Computer seems bogged down and IE wont open..

I recently have been experiencing some problems with my pc.. Internet explorer will not work.. but firefox will.. Here is the otl log..

wow it wont let me post the logs..

OTL logfile created on: 2/13/2011 3:57:40 PM - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\ISAIAH\Desktop
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 77.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 86.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 228.13 Gb Total Space | 62.73 Gb Free Space | 27.50% Space Free | Partition Type: NTFS
Drive D: | 74.50 Gb Total Space | 48.09 Gb Free Space | 64.55% Space Free | Partition Type: NTFS

Computer Name: MUSIC | User Name: ISAIAH | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/02/13 15:56:56 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ISAIAH\Desktop\OTL.com
PRC - [2011/01/24 00:46:06 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2010/11/24 11:07:58 | 000,088,176 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2010/06/24 21:32:44 | 001,193,848 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe
PRC - [2010/04/27 16:16:24 | 000,188,136 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
PRC - [2010/04/27 16:16:24 | 000,141,792 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
PRC - [2010/04/14 11:29:58 | 000,170,144 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
PRC - [2010/04/12 01:40:16 | 000,180,224 | ---- | M] (PowerISO Computing, Inc.) -- C:\Program Files\PowerISO\PWRISOVM.EXE
PRC - [2010/04/09 15:35:04 | 000,307,672 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
PRC - [2007/10/18 20:10:42 | 000,479,232 | ---- | M] (Nikon Corporation) -- C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
PRC - [2007/02/20 18:18:32 | 000,366,400 | ---- | M] (Google Inc.) -- C:\Program Files\Picasa2\PicasaMediaDetector.exe
PRC - [2006/03/20 17:34:50 | 000,213,936 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
PRC - [2005/11/16 20:19:00 | 005,264,384 | ---- | M] (Linksys) -- C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WUSB54Gv42.exe
PRC - [2005/10/05 01:12:00 | 000,094,208 | ---- | M] () -- C:\Program Files\Dell\Media Experience\DMXLauncher.exe
PRC - [2005/07/04 15:46:04 | 000,053,307 | ---- | M] (GEMTEKS) -- C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe
PRC - [2005/06/17 05:55:58 | 000,086,140 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
PRC - [2005/03/22 14:20:44 | 000,339,968 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\stsystra.exe
PRC - [2003/10/29 00:06:00 | 000,024,576 | R--- | M] (BVRP Software) -- C:\Program Files\Digital Line Detect\DLG.exe
PRC - [2003/06/02 11:50:58 | 000,053,248 | ---- | M] (Dell Computer Corporation) -- C:\Program Files\Dell AIO Printer A920\dlbkbmon.exe
PRC - [2003/06/02 11:25:24 | 000,270,336 | ---- | M] (Dell Computer Corporation) -- C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe


========== Modules (SafeList) ==========

MOD - [2011/02/13 15:56:56 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ISAIAH\Desktop\OTL.com
MOD - [2011/01/04 17:38:44 | 000,018,176 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\SiteAdvisor\sahook.dll
MOD - [2007/03/08 08:36:28 | 000,188,928 | ---- | M] () -- C:\WINDOWS\elodoxirakipe.dll
MOD - [2006/08/25 08:45:55 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
MOD - [2004/08/10 03:00:00 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\serwvdrv.dll
MOD - [2004/08/10 03:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\umdmxfrm.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Running] -- -- (WUSB54Gv42SVC)
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [Auto | Stopped] -- -- (DigiRefresh)
SRV - [2010/11/24 11:07:58 | 000,088,176 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2010/04/27 16:16:24 | 000,188,136 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe -- (mfefire)
SRV - [2010/04/27 16:16:24 | 000,141,792 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe -- (mfevtp)
SRV - [2010/04/15 08:45:10 | 000,364,216 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2010/04/14 11:29:58 | 000,170,144 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McProxy)
SRV - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV - [2010/02/25 23:47:00 | 003,489,788 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2005/12/12 07:52:32 | 000,180,224 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe -- (ELService)
SRV - [2005/06/17 05:55:58 | 000,086,140 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMon) Intel(R)


========== Driver Services (SafeList) ==========

DRV - [2010/07/19 15:35:45 | 000,767,488 | ---- | M] () [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\soxjxmj.sys -- (soxjxmj)
DRV - [2010/04/27 16:16:24 | 000,385,880 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2010/04/27 16:16:24 | 000,312,616 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfefirek.sys -- (mfefirek)
DRV - [2010/04/27 16:16:24 | 000,152,320 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2010/04/27 16:16:24 | 000,095,568 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeapfk.sys -- (mfeapfk)
DRV - [2010/04/27 16:16:24 | 000,088,480 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendiskmp)
DRV - [2010/04/27 16:16:24 | 000,088,480 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendisk)
DRV - [2010/04/27 16:16:24 | 000,083,496 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mferkdet.sys -- (mferkdet)
DRV - [2010/04/27 16:16:24 | 000,082,952 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\mfetdi2k.sys -- (mfetdi2k)
DRV - [2010/04/27 16:16:24 | 000,055,456 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cfwids.sys -- (cfwids)
DRV - [2010/04/27 16:16:24 | 000,051,688 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2010/04/12 01:44:34 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2010/03/29 23:46:30 | 000,038,224 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2010/02/11 05:01:43 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2009/09/16 09:22:48 | 000,040,552 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfesmfk.sys -- (mfesmfk)
DRV - [2009/09/16 09:22:14 | 000,034,248 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mferkdk.sys -- (mferkdk)
DRV - [2007/04/03 13:59:30 | 000,083,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616bus.sys -- (s616bus) Sony Ericsson Device 616 driver (WDM)
DRV - [2006/11/13 20:38:28 | 000,011,776 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\diginet.sys -- (DigiNet)
DRV - [2006/11/13 20:38:24 | 000,016,384 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\DigiFilt.sys -- (DigiFilter)
DRV - [2006/11/13 20:36:36 | 000,109,056 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Dalwdm.sys -- (dalwdmservice)
DRV - [2006/11/02 06:00:08 | 000,039,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2006/10/05 16:07:28 | 000,072,608 | ---- | M] (PACE Anti-Piracy, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\TPkd.sys -- (TPkd)
DRV - [2006/07/13 18:50:59 | 000,008,552 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)
DRV - [2005/12/12 07:52:34 | 000,010,112 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ELhid.sys -- (ELhid)
DRV - [2005/12/12 07:52:34 | 000,007,040 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ELmon.sys -- (ELmon)
DRV - [2005/12/12 07:52:34 | 000,006,912 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ELkbd.sys -- (ELkbd)
DRV - [2005/12/12 07:52:34 | 000,006,400 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ELmou.sys -- (ELmou)
DRV - [2005/12/12 07:52:32 | 000,007,808 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ELacpi.sys -- (ELacpi)
DRV - [2005/11/16 12:36:00 | 001,047,816 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2005/10/17 18:50:06 | 000,245,376 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rt2500usb.sys -- (WUSB54GPV4SRV)
DRV - [2005/08/25 13:05:24 | 000,176,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1e5132.sys -- (e1express) Intel(R)
DRV - [2005/08/03 19:10:18 | 001,273,344 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005/06/17 03:33:40 | 000,872,064 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\iastor.sys -- (iastor)
DRV - [2005/02/01 17:18:38 | 000,017,992 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\bcm42rly.sys -- (BCM42RLY)
DRV - [2004/08/12 15:45:54 | 000,137,728 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004/08/10 03:00:00 | 000,088,448 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2004/08/10 03:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2004/08/10 03:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [2004/08/10 03:00:00 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2004/08/03 21:07:44 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2004/08/03 21:07:44 | 000,041,088 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2004/08/03 20:29:56 | 001,897,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2003/11/17 12:59:20 | 000,212,224 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2003/11/17 12:58:02 | 000,680,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2003/11/17 12:56:26 | 001,042,432 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2001/08/17 12:07:44 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2001/08/17 12:07:42 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2001/08/17 12:07:40 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2001/08/17 12:07:36 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2001/08/17 12:07:34 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2001/08/17 11:52:22 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2001/08/17 11:52:20 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2001/08/17 11:52:20 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2001/08/17 11:52:18 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2001/08/17 11:52:16 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2001/08/17 11:52:12 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2001/08/17 11:52:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2001/08/17 11:51:58 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2001/08/17 11:51:56 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2001/08/17 11:51:54 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)
DRV - [2001/05/07 03:56:02 | 000,019,805 | R--- | M] (Thesycon GmbH, Germany) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbio.sys -- (USBIO) TrashTalk Drivers (usbio.sys)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8074

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Secure Search"
FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "www.yahoo.com"
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.9.1.14019
FF - prefs.js..extensions.enabledItems: piclens@cooliris.com:1.11.5
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.3
FF - prefs.js..extensions.enabledItems: {C3B746B0-13F8-4710-B565-6C10A693ADF1}:1.9.1
FF - prefs.js..keyword.URL: "http://search.search-go.net/?sid=10101053100&s="

FF - user.js..browser.search.selectedEngine: "Google"
FF - user.js..browser.search.order.1: "Google"
FF - user.js..keyword.URL: "http://search.search-go.net/?sid=10101053100&s="

FF - HKLM\software\mozilla\Firefox\Extensions\\{C3B746B0-13F8-4710-B565-6C10A693ADF1}: C:\Documents and Settings\ISAIAH\Local Settings\Application Data\{C3B746B0-13F8-4710-B565-6C10A693ADF1} [2010/07/20 15:58:34 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2011/02/02 14:00:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/08/03 09:27:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/09 15:35:09 | 000,000,000 | ---D | M]

[2009/03/09 16:53:10 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Extensions
[2009/03/09 16:53:10 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Extensions\mozswing@mozswing.org
[2011/02/13 14:59:07 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Firefox\Profiles\qy82nlj0.default\extensions
[2009/11/08 16:48:37 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Firefox\Profiles\qy82nlj0.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/11/02 13:15:17 | 000,000,000 | ---D | M] (Cooliris) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Firefox\Profiles\qy82nlj0.default\extensions\piclens@cooliris.com
[2009/11/02 13:15:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Firefox\Profiles\qy82nlj0.default\extensions\piclens@cooliris.com-trash
[2010/10/23 16:48:04 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Firefox\Profiles\qy82nlj0.default\extensions\toolbar@ask.com
[2011/02/13 14:59:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/07/20 15:58:34 | 000,000,000 | ---D | M] (XULRunner) -- C:\DOCUMENTS AND SETTINGS\ISAIAH\LOCAL SETTINGS\APPLICATION DATA\{C3B746B0-13F8-4710-B565-6C10A693ADF1}
[2009/03/09 16:51:31 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/02/02 14:00:45 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAM FILES\MCAFEE\SITEADVISOR
[2007/09/09 01:32:40 | 000,069,632 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\ffwt.dll
[2010/04/27 16:16:24 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Mozilla Firefox\components\Scriptff.dll
[2010/08/15 03:52:20 | 000,002,074 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google_search.xml
[2010/12/20 12:23:26 | 000,002,024 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\McSiteAdvisor.xml

O1 HOSTS File: ([2011/01/24 00:46:07 | 000,001,003 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.8minutedating.com
O1 - Hosts: 127.0.0.1 whysohardx.com
O1 - Hosts: 127.0.0.1 protectyourpc-11.com
O1 - Hosts: 127.0.0.1 checkserverstatux.com
O1 - Hosts: 127.0.0.1 xinmin.cn
O1 - Hosts: 127.0.0.1 xy95.cn
O1 - Hosts: 127.0.0.1 koralda.com
O1 - Hosts: 127.0.0.1 weirden.com
O1 - Hosts: 127.0.0.1 nanocloudcontroller.com
O1 - Hosts: 127.0.0.1 coo0lnet.net
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Program Files\McAfee\MSK\mskapbho.dll ()
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20100517164317.dll (McAfee, Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (no name) - {102BAD8B-CD05-46ff-94FF-A2C1ABD5F7D5} - No CLSID value found.
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [103] File not found
O4 - HKLM..\Run: [avp] File not found
O4 - HKLM..\Run: [Dell AIO Printer A920] C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe (Dell Computer Corporation)
O4 - HKLM..\Run: [DigidesignMMERefresh] File not found
O4 - HKLM..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe ()
O4 - HKLM..\Run: [Google Desktop Search] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [ISUSPM] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [mqjybnga] C:\Documents and Settings\ISAIAH\Local Settings\Application Data\adpcdsjsb\gxrfbwbshdw.exe ()
O4 - HKLM..\Run: [Omatehefo] C:\WINDOWS\elodoxirakipe.dll ()
O4 - HKLM..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (Google Inc.)
O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKCU..\Run: [Insider] File not found
O4 - HKCU..\Run: [JDK5SWFMZY] File not found
O4 - HKCU..\Run: [mqjybnga] C:\Documents and Settings\ISAIAH\Local Settings\Application Data\adpcdsjsb\gxrfbwbshdw.exe ()
O4 - HKCU..\Run: [rihjsxan] C:\Documents and Settings\ISAIAH\Local Settings\Temp\xxemvakcr\grermimlajb.exe ()
O4 - HKCU..\Run: [rwwz] File not found
O4 - HKCU..\Run: [WinTouch] File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe (BVRP Software)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Nikon Monitor.lnk = C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (Nikon Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Popup Blocker - {0D555BC6-E331-48b3-A60E-AAC0DF79438A} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Popup Blocker - {0D555BC6-E331-48b3-A60E-AAC0DF79438A} - Reg Error: Key error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O15 - HKCU\..Trusted Domains: mcafee.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: mcafee.com ([]https in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Java Plug-in 1.4.2_03)
O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O20 - AppInit_DLLs: (karina.dat\system32\) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\jkklmno: DllName - jkklmno.dll - File not found
O20 - Winlogon\Notify\mljkhfd: DllName - mljkhfd.dll - File not found
O20 - Winlogon\Notify\natva: DllName - C:\Documents and Settings\ISAIAH\Application Data\Propellerhead Software\natva.dll - File not found
O20 - Winlogon\Notify\ssqpm: DllName - C:\WINDOWS\system32\ssqpm.dll - File not found
O24 - Desktop Components:0 () - C:\Program Files\Common Files\rtelek.html
O24 - Desktop Components:1 (My Current Home Page) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\ISAIAH\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\ISAIAH\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O30 - LSA: Authentication Packages - (C:\WINDOWS\system32\vtutq.dll) - File not found
O30 - LSA: Authentication Packages - (nwprovau) - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/08/16 02:43:04 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{1324bdb5-dcff-11dc-a3eb-0018f832ea63}\Shell\AutoRun\command - "" = G:\wd_windows_tools\setup.exe
O33 - MountPoints2\{196229d6-dc5e-11de-a652-00137222e879}\Shell - "" = AutoRun
O33 - MountPoints2\{196229d6-dc5e-11de-a652-00137222e879}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{196229d6-dc5e-11de-a652-00137222e879}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell\AutoRun\command - "" = E:\setup.exe
O33 - MountPoints2\{a32ee908-2761-11dc-a263-00137222e879}\Shell - "" = AutoRun
O33 - MountPoints2\{a32ee908-2761-11dc-a263-00137222e879}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a32ee908-2761-11dc-a263-00137222e879}\Shell\AutoRun\command - "" = H:\LaunchU3.exe -a
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O36 - AppCertDlls: doskhone - (C:\WINDOWS\system32\bootdosx.dll) - File not found
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: mcmscsvc - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootMin: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: McMPFSvc - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootNet: mcmscsvc - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootNet: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SafeBootNet: mfefire - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.)
SafeBootNet: mfefirek - C:\WINDOWS\system32\drivers\mfefirek.sys (McAfee, Inc.)
SafeBootNet: mfefirek.sys - C:\WINDOWS\system32\drivers\mfefirek.sys (McAfee, Inc.)
SafeBootNet: mfehidk - C:\WINDOWS\system32\drivers\mfehidk.sys (McAfee, Inc.)
SafeBootNet: mfehidk.sys - C:\WINDOWS\system32\drivers\mfehidk.sys (McAfee, Inc.)
SafeBootNet: mfevtp - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe (McAfee, Inc.)
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: nm - C:\WINDOWS\system32\drivers\nmnt.sys (Microsoft Corporation)
SafeBootNet: nm.sys - C:\WINDOWS\system32\drivers\nmnt.sys (Microsoft Corporation)
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {03F998B2-0E00-11D3-A498-00104B6EB52E} - Viewpoint Media Player
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} - Viewpoint Media Player
ActiveX: {1BC46932-21B2-4130-86E0-B4EB4F7A7A7B} - Microsoft .NET Framework 1.0 Hotfix (KB887998)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {29E7D24F-BF30-45E7-8A40-AD27AFD8F5C6} - Microsoft .NET Framework 1.0 Hotfix (KB979904)
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {407408d4-94ed-4d86-ab69-a7f649d112ee} - %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection QuickLaunchShortcut 640 %systemroot%\inf\mcdftreg.inf
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4b218e3e-bc98-4770-93d3-2731b9329278} - %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection MarketplaceLinkInstall 896 %systemroot%\inf\ie.inf
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {8b15971b-5355-4c82-8c07-7e181ea07608} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {94de52c8-2d59-4f1b-883e-79663d2d9a8c} - Fax Provider
ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} -
ActiveX: {BDE0FA43-6952-4BA8-8C58-09AF690F88E1} - Microsoft .NET Framework 1.0 Hotfix (KB930494)
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E8EA5BD6-D931-4001-ABF6-81BAA500360A} - Microsoft .NET Framework 1.0 Hotfix (KB953295)
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {FDC11A6F-17D1-48f9-9EA3-9051954BAA24} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
ActiveX: KB910393 - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\EasyCDBlock.inf,PerUserInstall

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: wave - C:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (17183584330711040)

========== Files/Folders - Created Within 30 Days ==========

[2011/02/13 15:56:53 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\ISAIAH\Desktop\OTL.com
[2011/02/13 15:50:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\McAfee
[2011/02/13 15:30:02 | 000,000,000 | ---D | C] -- C:\Riot Games
[2011/02/13 15:30:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Riot Games
[2011/02/13 14:54:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ISAIAH\Desktop\League of Legends
[2011/02/13 14:54:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\PMB Files
[2011/02/13 14:54:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PMB Files
[2011/02/13 14:53:39 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks
[2011/02/03 22:38:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO
[2011/02/03 22:38:18 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO
[2011/02/02 14:14:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ISAIAH\Desktop\Commandos Complete Collection-Windows 7 Compatible
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/02/13 16:01:03 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2011/02/13 15:56:56 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ISAIAH\Desktop\OTL.com
[2011/02/13 15:51:02 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/02/13 15:49:50 | 000,000,286 | -H-- | M] () -- C:\WINDOWS\tasks\{8C3FDD81-7AE0-4605-A46A-2488B179F2A3}.job
[2011/02/13 15:49:50 | 000,000,282 | -H-- | M] () -- C:\WINDOWS\tasks\c56b432a.job
[2011/02/13 15:49:45 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/02/13 15:49:42 | 2145,554,432 | -HS- | M] () -- C:\hiberfil.sys
[2011/02/13 15:45:29 | 000,658,944 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Desktop\MicrosoftFixit50191.msi
[2011/02/13 15:35:23 | 000,001,614 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Play League of Legends.lnk
[2011/02/13 15:15:01 | 000,000,416 | ---- | M] () -- C:\WINDOWS\tasks\Updater.job
[2011/02/13 14:52:59 | 002,257,408 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Desktop\LeagueofLegends.exe
[2011/02/13 14:47:38 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Nmajoda.bin
[2011/02/07 23:32:01 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2011/01/28 14:05:52 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
[2011/01/25 16:10:37 | 000,122,368 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/24 00:46:07 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\explorer.exe
[2011/01/24 00:46:06 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2011/01/16 17:29:24 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdu.DAT
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/02/13 15:45:30 | 000,658,944 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Desktop\MicrosoftFixit50191.msi
[2011/02/13 15:35:23 | 000,001,614 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Play League of Legends.lnk
[2011/02/13 14:52:59 | 002,257,408 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Desktop\LeagueofLegends.exe
[2011/01/28 14:05:52 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
[2011/01/28 14:05:52 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
[2010/07/19 15:35:29 | 000,767,488 | ---- | C] () -- C:\WINDOWS\System32\drivers\soxjxmj.sys
[2009/05/18 19:05:09 | 000,000,256 | ---- | C] () -- C:\WINDOWS\dellstat.ini
[2009/05/18 19:04:52 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\dlbkvs.dll
[2009/05/18 19:04:13 | 000,000,255 | ---- | C] () -- C:\WINDOWS\System32\dlbkcoin.ini
[2008/12/25 09:08:37 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Fonts
[2008/12/25 09:08:37 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\Flowers
[2008/12/25 09:08:37 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdu.DAT
[2008/12/25 09:08:37 | 000,000,012 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Galaxy Swirl
[2008/10/07 09:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008/10/07 09:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008/06/18 18:59:34 | 000,012,875 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\faho.reg
[2008/06/17 18:05:19 | 000,015,883 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\falabum.lib
[2008/06/13 00:06:19 | 000,018,774 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\ifuvag._sy
[2008/06/13 00:06:19 | 000,018,543 | ---- | C] () -- C:\WINDOWS\ydemymudu.sys
[2008/06/13 00:06:19 | 000,017,908 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\acihas.db
[2008/06/13 00:06:19 | 000,016,908 | ---- | C] () -- C:\Program Files\Common Files\ycawumyv._sy
[2008/06/13 00:06:19 | 000,016,537 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\ewyfig.dll
[2008/06/13 00:06:19 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\olylopu.sys
[2008/06/13 00:06:19 | 000,014,240 | ---- | C] () -- C:\Program Files\Common Files\yzyver.dl
[2008/06/13 00:06:19 | 000,013,664 | ---- | C] () -- C:\Program Files\Common Files\ygyjefon.bat
[2008/06/13 00:06:19 | 000,010,621 | ---- | C] () -- C:\Program Files\Common Files\rejupyvys.ban
[2008/06/13 00:06:19 | 000,010,255 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\igifuxyve.inf
[2008/06/13 00:06:19 | 000,010,012 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\yrig.db
[2008/06/10 11:18:14 | 000,018,861 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\abacaqahu.pif
[2008/06/10 11:18:14 | 000,016,345 | ---- | C] () -- C:\Program Files\Common Files\awudigyby.dll
[2008/06/10 11:18:14 | 000,012,111 | ---- | C] () -- C:\Program Files\Common Files\edusysujez.inf
[2008/06/10 11:18:14 | 000,011,457 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\uboxiled.scr
[2008/06/10 11:18:13 | 000,018,698 | ---- | C] () -- C:\Program Files\Common Files\budedawyv.dat
[2008/06/10 11:18:13 | 000,018,618 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\mugoqiv.dll
[2008/06/10 11:18:13 | 000,018,008 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\ycapucehi.bin
[2008/06/10 11:18:13 | 000,017,878 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\ratuda._sy
[2008/06/10 11:18:13 | 000,014,898 | ---- | C] () -- C:\Program Files\Common Files\uvyvany.reg
[2008/06/10 11:18:13 | 000,014,210 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\ujedoka.sys
[2008/06/10 11:18:13 | 000,013,654 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\qurolesa.bat
[2008/06/10 11:18:13 | 000,011,455 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\cuhah.pif
[2008/06/08 13:56:03 | 000,010,401 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\poda.sys
[2008/06/05 18:47:23 | 000,014,813 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\jawyt.inf
[2008/06/02 18:59:32 | 000,019,846 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\tesisyh.db
[2008/06/02 18:59:32 | 000,019,404 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\qanekufod.com
[2008/06/02 18:59:32 | 000,019,221 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ehyxig.dll
[2008/06/02 18:59:32 | 000,018,525 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ypipudy.lib
[2008/06/02 18:59:32 | 000,018,228 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\ygumax.inf
[2008/06/02 18:59:32 | 000,018,062 | ---- | C] () -- C:\Program Files\Common Files\aticure.vbs
[2008/06/02 18:59:32 | 000,017,098 | ---- | C] () -- C:\Program Files\Common Files\ynyro.scr
[2008/06/02 18:59:32 | 000,016,029 | ---- | C] () -- C:\Program Files\Common Files\widar.bat
[2008/06/02 18:59:32 | 000,014,650 | ---- | C] () -- C:\Program Files\Common Files\qexykidu.sys
[2008/06/02 18:59:32 | 000,013,852 | ---- | C] () -- C:\WINDOWS\ytatuh.sys
[2008/06/02 18:59:32 | 000,013,094 | ---- | C] () -- C:\Program Files\Common Files\mutetidid.sys
[2008/06/02 18:59:32 | 000,012,227 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\eqagilok.com
[2008/06/02 18:59:32 | 000,012,151 | ---- | C] () -- C:\WINDOWS\anajubude.dll
[2008/06/02 18:59:32 | 000,010,463 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\aponaqyno._sy
[2008/04/06 20:03:30 | 000,751,830 | -HS- | C] () -- C:\WINDOWS\System32\wrsgmnak.ini
[2008/04/05 20:02:47 | 000,708,827 | -HS- | C] () -- C:\WINDOWS\System32\bibjyfgv.ini
[2008/04/03 20:32:43 | 000,693,426 | -HS- | C] () -- C:\WINDOWS\System32\aktlordj.ini
[2008/04/02 20:31:45 | 000,000,872 | -HS- | C] () -- C:\WINDOWS\System32\llyvdkeu.ini
[2008/04/01 20:30:26 | 001,926,046 | -HS- | C] () -- C:\WINDOWS\System32\hjbvkiou.ini
[2008/03/31 17:34:19 | 001,264,929 | -HS- | C] () -- C:\WINDOWS\System32\mjoleakv.ini
[2008/03/30 09:40:39 | 001,189,162 | -HS- | C] () -- C:\WINDOWS\System32\erwrnott.ini
[2008/03/28 20:26:41 | 001,244,553 | -HS- | C] () -- C:\WINDOWS\System32\gafwxjox.ini
[2008/03/27 20:28:00 | 001,238,104 | -HS- | C] () -- C:\WINDOWS\System32\bhiayjvo.ini
[2008/03/26 20:41:01 | 001,237,984 | -HS- | C] () -- C:\WINDOWS\System32\pbfdocae.ini
[2008/03/25 19:59:08 | 001,419,428 | -HS- | C] () -- C:\WINDOWS\System32\xnsijdbw.ini
[2008/03/25 19:43:21 | 001,473,920 | -HS- | C] () -- C:\WINDOWS\System32\hwbemffm.ini
[2008/03/24 19:38:19 | 001,566,519 | -HS- | C] () -- C:\WINDOWS\System32\ywpmijcw.ini
[2008/03/23 19:44:37 | 001,493,091 | -HS- | C] () -- C:\WINDOWS\System32\oewbetkc.ini
[2008/03/23 17:14:37 | 001,605,203 | -HS- | C] () -- C:\WINDOWS\System32\xqqxsgtl.ini
[2008/03/22 17:11:38 | 001,605,143 | -HS- | C] () -- C:\WINDOWS\System32\qwpditvp.ini
[2008/03/21 17:09:48 | 001,605,083 | -HS- | C] () -- C:\WINDOWS\System32\jrwspefa.ini
[2008/03/19 19:18:54 | 001,604,843 | -HS- | C] () -- C:\WINDOWS\System32\hxuaywho.ini
[2008/03/19 19:12:46 | 000,358,990 | -HS- | C] () -- C:\WINDOWS\System32\qtutv.ini2
[2008/03/19 19:12:45 | 000,358,990 | -HS- | C] () -- C:\WINDOWS\System32\qtutv.ini
[2008/03/19 18:48:49 | 000,000,035 | ---- | C] () -- C:\WINDOWS\Blink.ini
[2008/03/14 18:13:36 | 001,604,543 | -HS- | C] () -- C:\WINDOWS\System32\oabyvkil.ini
[2008/03/13 16:44:02 | 000,950,349 | -HS- | C] () -- C:\WINDOWS\System32\omylvsue.ini
[2008/03/12 19:24:03 | 000,833,340 | -HS- | C] () -- C:\WINDOWS\System32\xqavynef.ini
[2008/03/11 18:35:10 | 000,852,472 | -HS- | C] () -- C:\WINDOWS\System32\yskmnema.ini
[2008/03/10 18:22:20 | 000,881,799 | -HS- | C] () -- C:\WINDOWS\System32\rnbkucmc.ini
[2008/03/09 08:36:54 | 000,938,203 | -HS- | C] () -- C:\WINDOWS\System32\qyylyieu.ini
[2008/03/08 17:50:18 | 000,870,157 | -HS- | C] () -- C:\WINDOWS\System32\biapudhi.ini
[2008/03/07 17:47:17 | 000,870,299 | -HS- | C] () -- C:\WINDOWS\System32\snktbkmi.ini
[2008/03/06 20:21:38 | 000,874,946 | -HS- | C] () -- C:\WINDOWS\System32\gfwtjbac.ini
[2008/03/05 18:07:24 | 000,904,635 | -HS- | C] () -- C:\WINDOWS\System32\dhbouiot.ini
[2008/03/04 18:11:32 | 000,937,960 | -HS- | C] () -- C:\WINDOWS\System32\bfcxidcf.ini
[2008/03/03 18:48:09 | 000,932,674 | -HS- | C] () -- C:\WINDOWS\System32\ngvqbyrf.ini
[2008/03/01 14:04:39 | 001,035,882 | -HS- | C] () -- C:\WINDOWS\System32\otgmcvei.ini
[2008/02/29 20:14:52 | 000,952,965 | -HS- | C] () -- C:\WINDOWS\System32\fqnfcyqb.ini
[2008/02/29 18:36:05 | 001,054,031 | -HS- | C] () -- C:\WINDOWS\System32\qyavbewr.ini
[2008/02/28 18:35:36 | 000,936,828 | -HS- | C] () -- C:\WINDOWS\System32\spannrky.ini
[2008/02/27 18:07:13 | 000,948,660 | -HS- | C] () -- C:\WINDOWS\System32\lqncmiie.ini
[2008/02/26 18:10:02 | 000,935,000 | -HS- | C] () -- C:\WINDOWS\System32\wdflynik.ini
[2008/02/25 17:45:32 | 000,934,853 | -HS- | C] () -- C:\WINDOWS\System32\ihukixxc.ini
[2008/02/24 17:17:24 | 001,007,463 | -HS- | C] () -- C:\WINDOWS\System32\hnxwqwwv.ini
[2008/02/24 15:54:54 | 000,983,701 | -HS- | C] () -- C:\WINDOWS\System32\oswwjttn.ini
[2008/02/24 02:24:55 | 000,983,581 | -HS- | C] () -- C:\WINDOWS\System32\qykqgyyu.ini
[2008/02/23 16:38:07 | 000,983,461 | -HS- | C] () -- C:\WINDOWS\System32\vwwweloy.ini
[2008/02/23 14:50:24 | 000,983,368 | -HS- | C] () -- C:\WINDOWS\System32\cdogoesv.ini

[2008/02/22 18:50:24 | 000,983,775 | -HS- | C] () -- C:\WINDOWS\System32\sxpiedps.ini
[2008/02/22 18:29:43 | 001,004,140 | -HS- | C] () -- C:\WINDOWS\System32\mhxqtyyc.ini
[2008/02/20 20:23:29 | 001,069,720 | -HS- | C] () -- C:\WINDOWS\System32\tnhqrnri.ini
[2008/02/20 17:53:33 | 001,014,040 | -HS- | C] () -- C:\WINDOWS\System32\dmtjmkbc.ini
[2008/02/19 18:19:23 | 000,985,151 | -HS- | C] () -- C:\WINDOWS\System32\fdvyvocb.ini
[2008/02/18 17:59:17 | 001,042,595 | -HS- | C] () -- C:\WINDOWS\System32\cepumbfi.ini
[2008/02/17 10:49:24 | 001,035,193 | -HS- | C] () -- C:\WINDOWS\System32\bdwqogqj.ini
[2008/02/17 02:15:26 | 001,045,167 | -HS- | C] () -- C:\WINDOWS\System32\nyophkwm.ini
[2008/02/17 01:28:20 | 001,045,047 | -HS- | C] () -- C:\WINDOWS\System32\lkrovclj.ini
[2008/02/17 00:48:23 | 001,044,927 | -HS- | C] () -- C:\WINDOWS\System32\ftpuaubq.ini
[2008/02/16 18:54:58 | 001,044,801 | -HS- | C] () -- C:\WINDOWS\System32\cceeffgu.ini
[2008/02/16 12:47:58 | 001,061,158 | -HS- | C] () -- C:\WINDOWS\System32\grujckfk.ini
[2008/02/15 18:54:20 | 001,197,530 | -HS- | C] () -- C:\WINDOWS\System32\eyvudvaf.ini
[2008/02/14 17:57:10 | 001,123,247 | -HS- | C] () -- C:\WINDOWS\System32\bfyxecon.ini
[2008/02/13 18:46:33 | 001,116,793 | -HS- | C] () -- C:\WINDOWS\System32\rvphiftw.ini
[2008/02/13 17:41:18 | 001,183,101 | -HS- | C] () -- C:\WINDOWS\System32\imbmurui.ini
[2008/02/12 21:35:50 | 001,166,818 | -HS- | C] () -- C:\WINDOWS\System32\njhrqojm.ini
[2008/02/12 17:53:41 | 001,222,050 | -HS- | C] () -- C:\WINDOWS\System32\uuwjbfmm.ini
[2008/02/11 20:30:31 | 001,211,101 | -HS- | C] () -- C:\WINDOWS\System32\mnchrxtg.ini
[2008/02/11 18:00:47 | 001,221,257 | -HS- | C] () -- C:\WINDOWS\System32\eybmxdit.ini
[2008/02/10 14:20:00 | 001,218,806 | -HS- | C] () -- C:\WINDOWS\System32\gwnaxtqc.ini
[2008/02/10 13:50:20 | 001,218,650 | -HS- | C] () -- C:\WINDOWS\System32\jelirnkq.ini
[2008/02/10 13:02:32 | 001,218,530 | -HS- | C] () -- C:\WINDOWS\System32\brbkvaiw.ini
[2008/02/09 17:57:26 | 001,218,410 | -HS- | C] () -- C:\WINDOWS\System32\bqmpytoo.ini
[2008/02/09 03:32:52 | 001,218,389 | -HS- | C] () -- C:\WINDOWS\System32\fewwckjm.ini
[2008/02/08 17:54:25 | 001,221,986 | -HS- | C] () -- C:\WINDOWS\System32\rgxwjmky.ini
[2008/02/07 17:42:48 | 001,219,888 | -HS- | C] () -- C:\WINDOWS\System32\mapijvov.ini
[2008/02/06 20:57:49 | 001,200,161 | -HS- | C] () -- C:\WINDOWS\System32\xcggsfpt.ini
[2008/02/06 18:00:55 | 001,199,738 | -HS- | C] () -- C:\WINDOWS\System32\wyrtajwi.ini
[2008/02/05 22:08:55 | 001,133,610 | -HS- | C] () -- C:\WINDOWS\System32\jmkdqlnd.ini
[2008/02/05 21:20:43 | 001,133,568 | -HS- | C] () -- C:\WINDOWS\System32\csjukwgg.ini
[2008/02/05 19:43:58 | 001,135,893 | -HS- | C] () -- C:\WINDOWS\System32\qrpbxaok.ini
[2008/02/04 20:24:56 | 001,130,160 | -HS- | C] () -- C:\WINDOWS\System32\tvjjtjtm.ini
[2008/02/04 16:53:24 | 001,131,600 | -HS- | C] () -- C:\WINDOWS\System32\indqnlde.ini
[2008/02/04 08:39:01 | 001,131,825 | -HS- | C] () -- C:\WINDOWS\System32\ggmmoxpx.ini
[2008/02/04 07:02:18 | 001,131,615 | -HS- | C] () -- C:\WINDOWS\System32\iqesrqwp.ini
[2008/02/03 14:06:28 | 001,127,425 | -HS- | C] () -- C:\WINDOWS\System32\ieewitlt.ini
[2008/02/03 11:32:12 | 001,127,305 | -HS- | C] () -- C:\WINDOWS\System32\gqwyhnjk.ini
[2008/02/03 01:27:55 | 001,127,176 | -HS- | C] () -- C:\WINDOWS\System32\shyceeqv.ini
[2008/02/03 00:57:24 | 001,127,056 | -HS- | C] () -- C:\WINDOWS\System32\wseorjwy.ini
[2008/02/02 16:07:03 | 001,126,999 | -HS- | C] () -- C:\WINDOWS\System32\nvqckvib.ini
[2008/02/01 20:04:56 | 001,162,308 | -HS- | C] () -- C:\WINDOWS\System32\kfmxisia.ini
[2008/01/31 21:18:18 | 001,155,979 | -HS- | C] () -- C:\WINDOWS\System32\uetnwnaa.ini
[2008/01/31 20:30:24 | 001,155,841 | -HS- | C] () -- C:\WINDOWS\System32\pdyqrqhx.ini
[2008/01/31 17:39:24 | 001,168,115 | -HS- | C] () -- C:\WINDOWS\System32\kmhwybwm.ini
[2008/01/30 19:00:42 | 001,180,733 | -HS- | C] () -- C:\WINDOWS\System32\bpyexjiw.ini
[2008/01/29 20:50:45 | 001,167,221 | -HS- | C] () -- C:\WINDOWS\System32\tanhgrgf.ini
[2008/01/28 22:25:33 | 001,162,207 | -HS- | C] () -- C:\WINDOWS\System32\bhqmxblq.ini
[2008/01/28 21:37:22 | 001,162,339 | -HS- | C] () -- C:\WINDOWS\System32\xsblinxm.ini
[2008/01/28 20:55:25 | 001,162,225 | -HS- | C] () -- C:\WINDOWS\System32\klsfjpeo.ini
[2008/01/27 19:46:23 | 001,143,880 | -HS- | C] () -- C:\WINDOWS\System32\upawovfe.ini
[2008/01/27 18:48:52 | 001,143,594 | -HS- | C] () -- C:\WINDOWS\System32\fqbhpvnk.ini
[2008/01/27 15:09:09 | 001,143,472 | -HS- | C] () -- C:\WINDOWS\System32\xkdsehcg.ini
[2008/01/26 16:50:16 | 001,143,200 | -HS- | C] () -- C:\WINDOWS\System32\nlpcnabj.ini
[2008/01/26 12:03:06 | 001,142,692 | -HS- | C] () -- C:\WINDOWS\System32\mgpippsg.ini
[2008/01/25 17:33:56 | 000,976,342 | -HS- | C] () -- C:\WINDOWS\System32\pdglbkip.ini
[2008/01/24 19:26:50 | 000,994,174 | -HS- | C] () -- C:\WINDOWS\System32\bctutbjx.ini
[2008/01/23 18:13:23 | 001,022,387 | -HS- | C] () -- C:\WINDOWS\System32\nwgpxfto.ini
[2008/01/22 18:22:20 | 000,983,792 | -HS- | C] () -- C:\WINDOWS\System32\cefrseuk.ini
[2008/01/21 19:10:00 | 000,957,628 | -HS- | C] () -- C:\WINDOWS\System32\hsgfhxhc.ini
[2008/01/21 17:53:56 | 000,968,098 | -HS- | C] () -- C:\WINDOWS\System32\ffyvykek.ini
[2008/01/20 12:14:46 | 000,950,455 | -HS- | C] () -- C:\WINDOWS\System32\tlrepmbj.ini
[2008/01/19 12:58:10 | 000,952,502 | -HS- | C] () -- C:\WINDOWS\System32\bljqvnnj.ini
[2008/01/18 17:36:18 | 001,002,748 | -HS- | C] () -- C:\WINDOWS\System32\dwyafkbc.ini
[2008/01/17 18:17:41 | 001,070,167 | -HS- | C] () -- C:\WINDOWS\System32\plktyyww.ini
[2008/01/16 17:45:09 | 001,059,861 | -HS- | C] () -- C:\WINDOWS\System32\ovduukbq.ini
[2008/01/15 17:56:14 | 001,055,118 | -HS- | C] () -- C:\WINDOWS\System32\lrikucqt.ini
[2008/01/14 18:09:10 | 001,050,556 | -HS- | C] () -- C:\WINDOWS\System32\kcnxbkel.ini
[2008/01/13 15:01:22 | 001,053,893 | -HS- | C] () -- C:\WINDOWS\System32\trwhomhy.ini
[2008/01/13 12:18:26 | 001,053,809 | -HS- | C] () -- C:\WINDOWS\System32\kfinfudv.ini
[2008/01/12 13:13:33 | 001,053,675 | -HS- | C] () -- C:\WINDOWS\System32\hsllfxmj.ini
[2008/01/11 18:06:20 | 001,056,755 | -HS- | C] () -- C:\WINDOWS\System32\gunysesa.ini
[2008/01/10 17:55:54 | 001,061,177 | -HS- | C] () -- C:\WINDOWS\System32\wlflifnk.ini
[2008/01/09 18:08:08 | 001,046,237 | -HS- | C] () -- C:\WINDOWS\System32\rbtfpfuy.ini
[2008/01/09 17:54:30 | 001,046,030 | -HS- | C] () -- C:\WINDOWS\System32\mmfyfgfj.ini
[2008/01/08 17:49:48 | 001,050,877 | -HS- | C] () -- C:\WINDOWS\System32\fdtnaapw.ini
[2008/01/07 23:31:48 | 001,045,452 | -HS- | C] () -- C:\WINDOWS\System32\uefwpisr.ini
[2008/01/07 22:04:25 | 001,045,328 | -HS- | C] () -- C:\WINDOWS\System32\bijldhur.ini
[2008/01/07 00:43:52 | 001,045,451 | -HS- | C] () -- C:\WINDOWS\System32\noeabhpo.ini
[2008/01/06 17:51:25 | 001,045,358 | -HS- | C] () -- C:\WINDOWS\System32\kovtefdv.ini
[2008/01/06 13:08:26 | 001,045,189 | -HS- | C] () -- C:\WINDOWS\System32\qbiueiwy.ini
[2008/01/05 12:35:29 | 001,045,060 | -HS- | C] () -- C:\WINDOWS\System32\xeddffeb.ini
[2008/01/05 00:49:32 | 001,044,967 | -HS- | C] () -- C:\WINDOWS\System32\heobpqib.ini
[2008/01/04 17:51:18 | 001,044,820 | -HS- | C] () -- C:\WINDOWS\System32\dedasqjx.ini
[2008/01/03 17:42:52 | 001,044,700 | -HS- | C] () -- C:\WINDOWS\System32\nqvrggpl.ini
[2008/01/02 19:52:12 | 001,032,241 | -HS- | C] () -- C:\WINDOWS\System32\htlmhlly.ini
[2008/01/02 18:11:43 | 001,032,067 | -HS- | C] () -- C:\WINDOWS\System32\wdfrwtfh.ini
[2008/01/01 19:20:51 | 001,031,706 | -HS- | C] () -- C:\WINDOWS\System32\cixssgfp.ini
[2007/12/31 22:35:49 | 001,031,559 | -HS- | C] () -- C:\WINDOWS\System32\seqkkviv.ini
[2007/12/31 14:22:53 | 001,031,439 | -HS- | C] () -- C:\WINDOWS\System32\qqhvmpee.ini
[2007/12/30 14:48:47 | 001,031,401 | -HS- | C] () -- C:\WINDOWS\System32\sbcqvmlu.ini
[2007/12/30 11:11:28 | 001,031,235 | -HS- | C] () -- C:\WINDOWS\System32\vaoascpm.ini
[2007/12/24 11:13:28 | 001,311,078 | -HS- | C] () -- C:\WINDOWS\System32\jeyaqwqo.ini
[2007/12/22 08:39:55 | 001,313,151 | -HS- | C] () -- C:\WINDOWS\System32\naowmnga.ini
[2007/12/21 18:25:57 | 001,376,077 | -HS- | C] () -- C:\WINDOWS\System32\eyiddlhl.ini
[2007/12/21 18:07:10 | 001,420,193 | -HS- | C] () -- C:\WINDOWS\System32\lnogyalm.ini
[2007/12/20 18:08:10 | 001,405,880 | -HS- | C] () -- C:\WINDOWS\System32\bwhmbsil.ini
[2007/12/19 21:08:00 | 001,399,909 | -HS- | C] () -- C:\WINDOWS\System32\dttcfpje.ini
[2007/12/18 21:16:26 | 001,366,693 | -HS- | C] () -- C:\WINDOWS\System32\rhfvhuxl.ini
[2007/12/17 04:59:15 | 001,337,259 | -HS- | C] () -- C:\WINDOWS\System32\bqycbnom.ini
[2007/12/16 10:44:24 | 001,338,199 | -HS- | C] () -- C:\WINDOWS\System32\vrxteeor.ini
[2007/12/14 22:59:26 | 001,341,998 | -HS- | C] () -- C:\WINDOWS\System32\csrdpwii.ini
[2007/12/13 18:10:50 | 001,328,986 | -HS- | C] () -- C:\WINDOWS\System32\njkfmbbx.ini
[2007/12/12 22:59:50 | 000,000,263 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2007/12/12 21:01:29 | 001,283,621 | -HS- | C] () -- C:\WINDOWS\System32\lysqbuso.ini
[2007/12/12 18:17:56 | 001,293,381 | -HS- | C] () -- C:\WINDOWS\System32\tjjmamum.ini
[2007/12/10 22:19:27 | 001,345,120 | -HS- | C] () -- C:\WINDOWS\System32\wurjvehj.ini
[2007/12/10 21:39:50 | 001,200,796 | -HS- | C] () -- C:\WINDOWS\System32\ppoudlia.ini
[2007/12/07 18:09:23 | 001,252,634 | -HS- | C] () -- C:\WINDOWS\System32\qquyhxxe.ini
[2007/12/06 15:22:48 | 001,183,941 | -HS- | C] () -- C:\WINDOWS\System32\fvobyjus.ini
[2007/12/05 17:40:50 | 001,153,175 | -HS- | C] () -- C:\WINDOWS\System32\lnycpjuh.ini
[2007/12/04 22:59:06 | 001,112,234 | -HS- | C] () -- C:\WINDOWS\System32\knekwedl.ini
[2007/12/04 19:45:52 | 000,999,358 | -HS- | C] () -- C:\WINDOWS\System32\sngwodtn.ini
[2007/12/03 21:28:03 | 000,999,298 | -HS- | C] () -- C:\WINDOWS\System32\atodqijj.ini
[2007/12/03 18:45:43 | 001,000,642 | -HS- | C] () -- C:\WINDOWS\System32\evikmetg.ini
[2007/12/02 03:34:08 | 001,002,998 | -HS- | C] () -- C:\WINDOWS\System32\dthamllm.ini
[2007/11/29 17:59:50 | 000,922,347 | -HS- | C] () -- C:\WINDOWS\System32\whnsdnpk.ini
[2007/11/24 11:08:34 | 001,092,095 | -HS- | C] () -- C:\WINDOWS\System32\dlvmrhmo.ini
[2007/11/22 17:19:59 | 000,793,074 | -HS- | C] () -- C:\WINDOWS\System32\dtjuodqi.ini
[2007/11/21 20:38:52 | 000,789,481 | -HS- | C] () -- C:\WINDOWS\System32\sspijtjd.ini
[2007/11/21 19:38:51 | 000,843,027 | -HS- | C] () -- C:\WINDOWS\System32\rcoopbnd.ini
[2007/11/20 20:34:41 | 000,689,502 | -HS- | C] () -- C:\WINDOWS\System32\wtpwaghf.ini
[2007/11/18 12:52:57 | 000,678,085 | -HS- | C] () -- C:\WINDOWS\System32\fuyxqmkr.ini
[2007/11/17 12:50:06 | 000,677,920 | -HS- | C] () -- C:\WINDOWS\System32\egcrpvho.ini
[2007/11/17 09:19:13 | 001,239,529 | -HS- | C] () -- C:\WINDOWS\System32\kjswqhjx.ini
[2007/11/15 17:54:13 | 001,239,529 | -HS- | C] () -- C:\WINDOWS\System32\frtctivj.ini
[2007/11/12 17:47:19 | 001,306,718 | -HS- | C] () -- C:\WINDOWS\System32\vtfeswjc.ini
[2007/11/11 21:45:11 | 001,216,392 | -HS- | C] () -- C:\WINDOWS\System32\wmiwmeva.ini
[2007/11/10 21:42:11 | 001,216,263 | -HS- | C] () -- C:\WINDOWS\System32\qqfsrtaj.ini
[2007/11/09 21:42:13 | 001,218,528 | -HS- | C] () -- C:\WINDOWS\System32\wgyobblk.ini
[2007/11/08 18:55:59 | 001,210,366 | -HS- | C] () -- C:\WINDOWS\System32\nhxfkdix.ini
[2007/11/06 19:21:14 | 001,212,057 | -HS- | C] () -- C:\WINDOWS\System32\uhkepgjn.ini
[2007/10/29 16:58:18 | 001,199,834 | -HS- | C] () -- C:\WINDOWS\System32\bvdctdpp.ini
[2007/10/25 20:49:14 | 001,199,660 | -HS- | C] () -- C:\WINDOWS\System32\unwycxep.ini
[2007/10/25 18:02:12 | 000,693,481 | -HS- | C] () -- C:\WINDOWS\System32\taowgixo.ini
[2007/10/22 17:18:05 | 000,693,730 | -HS- | C] () -- C:\WINDOWS\System32\ofoovnmx.ini
[2007/10/22 17:00:33 | 000,693,610 | -HS- | C] () -- C:\WINDOWS\System32\cwifjwkd.ini
[2007/10/22 16:54:41 | 000,000,246 | ---- | C] () -- C:\Program Files\Common Files\qucav655
[2007/10/21 20:36:52 | 000,693,490 | -HS- | C] () -- C:\WINDOWS\System32\uaefkwyb.ini
[2007/10/21 20:22:31 | 000,006,520 | -HS- | C] () -- C:\WINDOWS\System32\mpqss.ini
[2007/10/20 14:42:45 | 000,230,137 | -HS- | C] () -- C:\WINDOWS\System32\mpqss.ini2
[2007/09/11 21:35:09 | 000,000,198 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\G-Force Prefs (WindowsMediaPlayer).txt
[2007/09/09 01:32:40 | 000,000,010 | ---- | C] () -- C:\Program Files\.autoreg
[2007/08/30 17:11:22 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\GTW32N50.dll
[2007/08/30 17:11:06 | 000,001,668 | ---- | C] () -- C:\WINDOWS\System32\WLAN.INI
[2007/08/09 18:45:17 | 000,122,368 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/06/29 15:03:51 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\DigiPlatformSupport.dll
[2007/06/29 14:46:52 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2007/06/28 17:52:56 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\fusioncache.dat
[2006/12/05 17:00:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ernel32.dll
[2006/07/13 19:03:04 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/07/13 18:57:07 | 000,000,126 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006/07/13 18:27:02 | 000,000,387 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2005/11/09 23:56:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/08/16 02:37:24 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2005/08/16 02:33:38 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/08/16 02:18:42 | 000,188,928 | ---- | C] () -- C:\WINDOWS\elodoxirakipe.dll
[2005/08/05 12:01:54 | 000,235,008 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[1997/06/13 18:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll

========== Custom Scans ==========


< %systemroot%\Fonts\*.com >
[2006/04/18 14:39:28 | 000,026,040 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont
[2006/06/29 13:53:56 | 000,026,489 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont
[2006/04/18 14:39:28 | 000,029,779 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont
[2006/06/29 13:58:52 | 000,030,808 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont

< %systemroot%\Fonts\*.dll >

< %systemroot%\Fonts\*.ini >
[2005/08/16 02:42:12 | 000,000,067 | -HS- | M] () -- C:\WINDOWS\Fonts\desktop.ini

< %systemroot%\Fonts\*.ini2 >

< %systemroot%\Fonts\*.exe >

< %systemroot%\system32\spool\prtprocs\w32x86\*.* >
[2003/04/30 12:43:32 | 000,078,336 | ---- | M] () -- C:\WINDOWS\system32\spool\prtprocs\w32x86\DLBKPP5C.DLL
[2008/07/06 05:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2008/07/06 03:50:03 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
[2002/05/14 15:50:34 | 000,011,264 | ---- | M] (BVRP Software) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\wfxprint2000.dll

< %systemroot%\REPAIR\*.bak1 >

< %systemroot%\REPAIR\*.ini >

< %systemroot%\system32\*.jpg >

< %systemroot%\*.jpg >

< %systemroot%\*.png >

< %systemroot%\*.scr >
[2008/06/02 18:59:32 | 000,019,949 | ---- | M] () -- C:\WINDOWS\dipem.scr
[2008/07/06 10:19:23 | 000,019,441 | ---- | M] () -- C:\WINDOWS\vovexyw.scr

< %systemroot%\*._sy >
[2008/07/03 08:09:17 | 000,018,355 | ---- | M] () -- C:\WINDOWS\tari._sy
[2008/06/13 00:06:19 | 000,014,304 | ---- | M] () -- C:\WINDOWS\wuba._sy
[2008/06/10 11:18:13 | 000,016,180 | ---- | M] () -- C:\WINDOWS\ynexavebe._sy

< %APPDATA%\Adobe\Update\*.* >

< %ALLUSERSPROFILE%\Favorites\*.* >

< %APPDATA%\Microsoft\*.* >

< %PROGRAMFILES%\*.* >
[2007/09/09 01:32:40 | 000,000,010 | ---- | M] () -- C:\Program Files\.autoreg

< %APPDATA%\Update\*.* >

< %PROGRAMFILES%\bak. /s >

< %systemroot%\system32\bak. /s >

< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >
[2005/08/16 02:43:10 | 000,000,294 | -HS- | M] () -- C:\Documents and Settings\All Users\Start Menu\desktop.ini

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %systemroot%\*.config >

< %systemroot%\system32\*.db >
[2008/06/23 14:51:08 | 000,017,820 | ---- | M] () -- C:\WINDOWS\system32\rama.db
[2008/06/02 18:59:32 | 000,014,214 | ---- | M] () -- C:\WINDOWS\system32\ubyrybid.db
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >
[2007/06/28 17:53:03 | 000,000,170 | -HS- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\Microsoft\Internet Explorer\Quick Launch\desktop.ini
[2005/08/16 02:50:28 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf

< %USERPROFILE%\Desktop\*.exe >
[2011/02/13 14:52:59 | 002,257,408 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Desktop\LeagueofLegends.exe
[2010/10/18 20:34:12 | 030,164,216 | ---- | M] (Lime Wire LLC) -- C:\Documents and Settings\ISAIAH\Desktop\LimeWireWin.exe

< %PROGRAMFILES%\Common Files\*.* >
[2008/06/02 18:59:32 | 000,018,062 | ---- | M] () -- C:\Program Files\Common Files\aticure.vbs
[2008/06/10 11:18:14 | 000,016,345 | ---- | M] () -- C:\Program Files\Common Files\awudigyby.dll
[2008/06/10 11:18:13 | 000,018,698 | ---- | M] () -- C:\Program Files\Common Files\budedawyv.dat
[2008/06/10 11:18:14 | 000,012,111 | ---- | M] () -- C:\Program Files\Common Files\edusysujez.inf
[2008/06/02 18:59:32 | 000,013,094 | ---- | M] () -- C:\Program Files\Common Files\mutetidid.sys
[2008/06/02 18:59:32 | 000,014,650 | ---- | M] () -- C:\Program Files\Common Files\qexykidu.sys
[2007/10/22 16:54:58 | 000,000,246 | ---- | M] () -- C:\Program Files\Common Files\qucav655
[2008/06/13 00:06:19 | 000,010,621 | ---- | M] () -- C:\Program Files\Common Files\rejupyvys.ban
[2008/06/10 11:18:13 | 000,014,898 | ---- | M] () -- C:\Program Files\Common Files\uvyvany.reg
[2008/06/02 18:59:32 | 000,016,029 | ---- | M] () -- C:\Program Files\Common Files\widar.bat
[2008/06/13 00:06:19 | 000,016,908 | ---- | M] () -- C:\Program Files\Common Files\ycawumyv._sy
[2008/06/13 00:06:19 | 000,013,664 | ---- | M] () -- C:\Program Files\Common Files\ygyjefon.bat
[2008/06/02 18:59:32 | 000,017,098 | ---- | M] () -- C:\Program Files\Common Files\ynyro.scr
[2008/06/13 00:06:19 | 000,014,240 | ---- | M] () -- C:\Program Files\Common Files\yzyver.dl

< %systemroot%\*.src >

< %systemroot%\install\*.* >

< %systemroot%\system32\DLL\*.* >

< %systemroot%\system32\HelpFiles\*.* >

< %systemroot%\system32\rundll\*.* >

< %systemroot%\winn32\*.* >

< %systemroot%\Java\*.* >
[2007/10/18 18:02:04 | 000,000,008 | ---- | M] () -- C:\WINDOWS\java\rabgiab.dat
[2007/10/18 18:02:07 | 000,000,008 | ---- | M] () -- C:\WINDOWS\java\rabgibb.dat
[2007/10/18 18:02:07 | 000,000,008 | ---- | M] () -- C:\WINDOWS\java\rabgicb.dat
[2007/10/18 18:02:07 | 000,000,046 | ---- | M] () -- C:\WINDOWS\java\rabgil.dat
[2007/10/15 18:46:44 | 000,000,008 | ---- | M] () -- C:\WINDOWS\java\rabgip1b.dat
[2007/10/18 18:02:07 | 000,001,150 | ---- | M] () -- C:\WINDOWS\java\rabgis.dat

< %systemroot%\system32\test\*.* >

< %systemroot%\system32\Rundll32\*.* >

< %systemroot%\AppPatch\Custom\*.* >

< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >

< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >

< %PROGRAMFILES%\Internet Explorer\*.tmp >

< %PROGRAMFILES%\Internet Explorer\*.dat >

< %USERPROFILE%\My Documents\*.exe >
[2008/12/16 21:40:29 | 007,518,240 | ---- | M] (Mozilla) -- C:\Documents and Settings\ISAIAH\My Documents\Firefox Setup 3.0.5.exe

< %USERPROFILE%\*.exe >

< %systemroot%\ADDINS\*.* >
[2004/08/10 03:00:00 | 000,000,791 | ---- | M] () -- C:\WINDOWS\addins\fxsext.ecf

< %systemroot%\assembly\*.bak2 >

< %systemroot%\Config\*.* >

< %systemroot%\REPAIR\*.bak2 >

< %systemroot%\SECURITY\Database\*.sdb /x >

< %systemroot%\SYSTEM\*.bak2 >

< %systemroot%\Web\*.bak2 >

< %systemroot%\Driver Cache\*.* >

< %PROGRAMFILES%\Mozilla Firefox\*.exe >
[2010/04/09 15:35:04 | 000,185,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\crashreporter.exe
[2010/04/09 15:35:04 | 000,307,672 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
[2010/04/09 15:35:06 | 000,242,136 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\updater.exe

< %ProgramFiles%\Microsoft Common\*.* >

< %ProgramFiles%\TinyProxy. >

< %USERPROFILE%\Favorites\*.url /x >
[2007/06/28 17:53:02 | 000,000,122 | -HS- | M] () -- C:\Documents and Settings\ISAIAH\Favorites\Desktop.ini

< %systemroot%\system32\*.bk >

< %systemroot%\*.te >

< %systemroot%\system32\system32\*.* >

< %ALLUSERSPROFILE%\*.dat /x >
[2007/12/29 21:37:06 | 000,000,418 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2005/07/25 21:39:44 | 001,267,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\comsvcs.dll
[2010/04/16 08:20:18 | 000,357,888 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dxtmsft.dll
[2010/04/16 08:20:18 | 000,205,312 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dxtrans.dll
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\*.exe /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2005/08/16 02:27:08 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2005/08/16 02:27:08 | 000,659,456 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2005/08/16 02:27:08 | 000,876,544 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\system32\*.sys >
[2004/08/10 03:00:00 | 000,009,029 | ---- | M] () -- C:\WINDOWS\system32\ansi.sys
[2005/02/01 17:18:38 | 000,017,992 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\system32\bcm42rly.sys
[2004/08/10 03:00:00 | 000,027,097 | ---- | M] () -- C:\WINDOWS\system32\country.sys
[2004/06/09 08:29:56 | 000,006,977 | ---- | M] (Gteko Ltd.) -- C:\WINDOWS\system32\DDMI2.sys
[2005/03/13 14:54:00 | 000,006,656 | ---- | M] (GTek Technologies Ltd.) -- C:\WINDOWS\system32\DLPT2.sys
[2005/02/08 10:37:52 | 000,007,626 | ---- | M] (Gteko Ltd.) -- C:\WINDOWS\system32\GPCIEnum.sys
[2004/06/15 14:55:56 | 000,007,882 | ---- | M] (Gteko Ltd.) -- C:\WINDOWS\system32\GTKCMOS.sys
[2003/09/25 21:15:32 | 000,015,872 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\system32\GTNDIS5.sys
[2004/08/10 03:00:00 | 000,004,768 | ---- | M] () -- C:\WINDOWS\system32\himem.sys
[2004/08/10 03:00:00 | 000,042,809 | ---- | M] () -- C:\WINDOWS\system32\key01.sys
[2004/08/10 03:00:00 | 000,042,537 | ---- | M] () -- C:\WINDOWS\system32\keyboard.sys
[2005/01/01 02:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) -- C:\WINDOWS\system32\npptNT2.sys
[2004/08/10 03:00:00 | 000,027,866 | ---- | M] () -- C:\WINDOWS\system32\ntdos.sys
[2004/08/10 03:00:00 | 000,029,146 | ---- | M] () -- C:\WINDOWS\system32\ntdos404.sys
[2004/08/10 03:00:00 | 000,029,370 | ---- | M] () -- C:\WINDOWS\system32\ntdos411.sys
[2004/08/10 03:00:00 | 000,029,274 | ---- | M] () -- C:\WINDOWS\system32\ntdos412.sys
[2004/08/10 03:00:00 | 000,029,146 | ---- | M] () -- C:\WINDOWS\system32\ntdos804.sys
[2004/08/10 03:00:00 | 000,033,840 | ---- | M] () -- C:\WINDOWS\system32\ntio.sys
[2004/08/10 03:00:00 | 000,034,560 | ---- | M] () -- C:\WINDOWS\system32\ntio404.sys
[2004/08/10 03:00:00 | 000,035,648 | ---- | M] () -- C:\WINDOWS\system32\ntio411.sys
[2004/08/10 03:00:00 | 000,035,424 | ---- | M] () -- C:\WINDOWS\system32\ntio412.sys
[2004/08/10 03:00:00 | 000,034,560 | ---- | M] () -- C:\WINDOWS\system32\ntio804.sys
[2008/06/13 00:06:19 | 000,016,384 | ---- | M] () -- C:\WINDOWS\system32\olylopu.sys
[2005/10/17 18:50:06 | 000,245,376 | ---- | M] (Ralink Technology Inc.) -- C:\WINDOWS\system32\rt2500usb.sys
[2004/08/10 03:00:00 | 000,017,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\watchdog.sys
[2007/03/08 06:47:48 | 001,843,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32k(2).sys
[2007/03/08 06:47:48 | 001,843,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32k(3).sys
[2010/05/01 22:56:34 | 001,850,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32k.sys
[2004/01/07 16:04:00 | 000,339,488 | ---- | M] (Cisco-Linksys, LLC.) -- C:\WINDOWS\system32\WUSB20XP.sys
[2004/04/23 21:43:00 | 000,374,752 | ---- | M] (Cisco-Linksys, LLC.) -- C:\WINDOWS\system32\WUSBGXP.sys
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.dll >
[2005/08/03 18:08:34 | 000,040,960 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2erec.dll

< %systemroot%\system32\drivers\*.ini >

< %systemroot%\system32\drivers\*.exe >

< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >
[2003/04/30 12:43:32 | 000,078,336 | ---- | M] () -- C:\WINDOWS\system32\spool\prtprocs\w32x86\DLBKPP5C.DLL
[2008/07/06 05:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2002/05/14 15:50:34 | 000,011,264 | ---- | M] (BVRP Software) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\wfxprint2000.dll

< %SYSTEMDRIVE%\*.* >
[2005/08/16 02:43:04 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2007/06/28 17:52:43 | 000,000,209 | -HS- | M] () -- C:\BoOT.INi
[2005/08/16 02:43:04 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2006/07/13 18:30:42 | 000,007,046 | RH-- | M] () -- C:\dell.sdr
[2011/02/13 15:49:42 | 2145,554,432 | -HS- | M] () -- C:\hiberfil.sys
[2007/06/29 15:05:45 | 000,004,128 | ---- | M] () -- C:\INFCACHE.1

Wow it will only let me post little bits at a time.. So Uhh lemme figure this out and sorry for so many posts..

[2005/08/16 02:43:04 | 000,000,000 | -H-- | M] () -- C:\IO.SYS
[2006/07/13 18:51:14 | 000,000,838 | -H-- | M] () -- C:\IPH.PH
[2005/08/16 02:43:04 | 000,000,000 | -H-- | M] () -- C:\MSDOS.SYS
[2004/08/10 03:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2004/08/10 03:00:00 | 000,250,032 | RHS- | M] () -- C:\ntldr
[2011/02/13 15:49:42 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2007/06/29 14:43:40 | 000,104,125 | ---- | M] () -- C:\pc-decrap-reg.txt
[2007/06/29 14:49:23 | 000,068,038 | ---- | M] () -- C:\pc-decrapifier-msi.log
[2007/06/29 14:52:12 | 000,000,858 | ---- | M] () -- C:\pc-decrapifier.log
[2009/05/18 19:05:42 | 000,000,168 | ---- | M] () -- C:\setupfax.log
[2006/07/13 18:51:20 | 000,000,087 | ---- | M] () -- C:\SystemInfo.ini
[2007/09/04 20:47:08 | 000,020,480 | ---- | M] () -- C:\test.pcm
[2010/07/19 15:35:05 | 000,000,150 | ---- | M] () -- C:\zrpt.xml

< %PROGRAMFILES%\*. >
[2009/06/10 13:01:43 | 000,000,000 | ---D | M] -- C:\Program Files\ABBYY FineReader 5.0 Sprint
[2009/06/10 13:01:40 | 000,000,000 | ---D | M] -- C:\Program Files\ABBYY FineReader 6.0
[2009/05/17 20:07:07 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2010/01/06 18:18:12 | 000,000,000 | ---D | M] -- C:\Program Files\AGEIA Technologies
[2008/12/25 09:13:39 | 000,000,000 | ---D | M] -- C:\Program Files\ArcSoft
[2010/10/22 01:02:10 | 000,000,000 | ---D | M] -- C:\Program Files\Ask.com
[2006/07/13 18:48:10 | 000,000,000 | ---D | M] -- C:\Program Files\ATI Technologies
[2006/07/13 18:57:28 | 000,000,000 | ---D | M] -- C:\Program Files\BAE
[2007/07/29 13:21:30 | 000,000,000 | ---D | M] -- C:\Program Files\BFD
[2007/07/29 13:19:27 | 000,000,000 | ---D | M] -- C:\Program Files\BFDXFL
[2010/08/13 17:48:14 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2005/08/16 02:38:36 | 000,000,000 | ---D | M] -- C:\Program Files\ComPlus Applications
[2006/07/13 18:32:42 | 000,000,000 | ---D | M] -- C:\Program Files\CONEXANT
[2006/07/13 18:54:43 | 000,000,000 | ---D | M] -- C:\Program Files\Corel Corporation
[2007/06/29 14:44:37 | 000,000,000 | ---D | M] -- C:\Program Files\Dell
[2009/05/18 19:04:11 | 000,000,000 | ---D | M] -- C:\Program Files\Dell A920

[2009/06/10 13:01:27 | 000,000,000 | ---D | M] -- C:\Program Files\Dell AIO Printer A920
[2006/07/13 18:52:07 | 000,000,000 | ---D | M] -- C:\Program Files\Dell Support
[2010/04/14 16:17:22 | 000,000,000 | ---D | M] -- C:\Program Files\Diablo II
[2007/06/29 15:27:34 | 000,000,000 | ---D | M] -- C:\Program Files\DIFX
[2008/02/04 08:16:33 | 000,000,000 | ---D | M] -- C:\Program Files\Digidesign
[2006/07/13 18:48:50 | 000,000,000 | ---D | M] -- C:\Program Files\Digital Line Detect
[2005/08/16 18:54:50 | 000,000,000 | ---D | M] -- C:\Program Files\DIGStream
[2009/12/16 23:50:29 | 000,000,000 | ---D | M] -- C:\Program Files\DivX
[2010/05/19 18:18:23 | 000,000,000 | ---D | M] -- C:\Program Files\DOSBox-0.72
[2008/06/09 20:09:04 | 000,000,000 | ---D | M] -- C:\Program Files\EndItAll
[2005/08/16 18:51:50 | 000,000,000 | ---D | M] -- C:\Program Files\EnglishOtto
[2005/08/16 18:54:50 | 000,000,000 | ---D | M] -- C:\Program Files\ESPNMotion
[2009/06/10 13:01:39 | 000,000,000 | ---D | M] -- C:\Program Files\FaxTools
[2009/12/08 21:33:56 | 000,000,000 | ---D | M] -- C:\Program Files\Firefly Studios
[2007/07/29 13:20:33 | 000,000,000 | ---D | M] -- C:\Program Files\FXpansion
[2005/08/16 18:54:44 | 000,000,000 | ---D | M] -- C:\Program Files\GemMaster
[2010/05/19 18:26:08 | 000,000,000 | ---D | M] -- C:\Program Files\GOG.com
[2008/02/16 19:29:29 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2010/02/15 13:35:26 | 000,000,000 | ---D | M] -- C:\Program Files\Guitar Pro 5
[2011/02/13 15:29:59 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2006/07/13 18:48:33 | 000,000,000 | ---D | M] -- C:\Program Files\Intel
[2006/07/13 18:48:29 | 000,000,000 | ---D | M] -- C:\Program Files\InterActual
[2007/06/29 15:06:37 | 000,000,000 | ---D | M] -- C:\Program Files\InterLok
[2010/06/28 00:12:26 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer

OTL Extras logfile created on: 2/13/2011 3:57:40 PM - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\ISAIAH\Desktop
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 77.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 86.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 228.13 Gb Total Space | 62.73 Gb Free Space | 27.50% Space Free | Partition Type: NTFS
Drive D: | 74.50 Gb Total Space | 48.09 Gb Free Space | 64.55% Space Free | Partition Type: NTFS

Computer Name: MUSIC | User Name: ISAIAH | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"UacDisableNotify" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"56732:TCP" = 56732:TCP:*:Enabled:Pando Media Booster
"56732:UDP" = 56732:UDP:*:Enabled:Pando Media Booster

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"3776:UDP" = 3776:UDP:*:Enabled:Media Center Extender Service
"3390:TCP" = 3390:TCP:*:Enabled:Remote Media Center Experience
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"56732:TCP" = 56732:TCP:*:Enabled:Pando Media Booster
"56732:UDP" = 56732:UDP:*:Enabled:Pando Media Booster

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL
"C:\Program Files\America Online 9.0\waol.exe" = C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe" = C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" = C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL
"C:\Program Files\America Online 9.0\waol.exe" = C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL
"C:\Program Files\BitLord\BitLord.exe" = C:\Program Files\BitLord\BitLord.exe:*:Disabled:BitLord
"C:\Program Files\Defender Pro\Defender Pro Anti-Virus\kav.exe" = C:\Program Files\Defender Pro\Defender Pro Anti-Virus\kav.exe:*:Enabled:Defender Pro
"C:\WINDOWS\system32\iiulvlbx.exe" = C:\WINDOWS\system32\iiu
"C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire -- (Lime Wire, LLC)
"C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe" = C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent
"C:\Program Files\Firefly Studios\Stronghold 2\Stronghold2.exe" = C:\Program Files\Firefly Studios\Stronghold 2\Stronghold2.exe:*:Enabled:Stronghold 2 -- (Firefly Studios)
"C:\Program Files\Dragon Age\bin_ship\daorigins.exe" = C:\Program Files\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Origins Game
"C:\Program Files\Dragon Age\DAOriginsLauncher.exe" = C:\Program Files\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Origins Launcher
"C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe" = C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Origins Updater
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Documents and Settings\ISAIAH\Desktop\utorrent.exe" = C:\Documents and Settings\ISAIAH\Desktop\utorrent.exe:*:Enabled:µTorrent
"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" = C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe:*:Enabled:McAfee Shared Service Host -- (McAfee, Inc.)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0AB76F69-E761-4CFA-B9B0-A1906B4E9E4B}" = WD Diagnostics
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{16D2C649-CBA8-44EE-B730-12584667D487}" = Stronghold 2 Deluxe
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1C4551A6-4743-4093-91E4-1477CD655043}" = NVIDIA PhysX
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{23FE964A-853B-4176-86D7-9E18B5CA1FC0}" = Media Center Extender
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 11
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager
"{33BB4982-DC52-4886-A03B-F4C5C80BEE89}" = Windows Media Player 10
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}" = URL Assistant
"{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{43CAC9A1-1993-4F65-9096-7C9AFC2BBF54}" = Dell CinePlayer
"{4667B940-BB01-428B-986E-A0CC46497BF7}" = ELIcon
"{4CEA6811-DFAD-4892-828D-49941FE3B779}" = Intel(R) PROSet for Wired Connections
"{548EEA8E-8299-497F-8057-811D2D7097DC}" = Dell Support 3.1
"{5905F42D-3F5F-4916-ADA6-94A3646AEE76}" = Dell Driver Reset Tool
"{5B09BD67-4C99-46A1-8161-B7208CE18121}" = QuickTime
"{5B6BE547-21E2-49CA-B2E2-6A5F470593B1}" = Sonic Activation Module
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{62BD0AE0-4EB1-4BBB-8F43-B6400C8FEB2C}" = AOLIcon
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D5FCA42-1486-4E32-AFE8-1B7E2AA59D33}" = Digital Content Portal
"{7148F0A8-6813-11D6-A77B-00B0D0142030}" = Java 2 Runtime Environment, SE v1.4.2_03
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74F7662C-B1DB-489E-A8AC-07A06B24978B}" = Dell System Restore
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7F142D56-3326-11D5-B229-002078017FBF}" = Modem Helper
"{82D48AB1-8E7F-4AA5-A5FA-47FA58A48110}" = Free Bomb Factory Plug-Ins 7.3
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8C22F265-DE76-44D1-8A79-A71D819137DA}" = Intel(R) Quick Resume Technology Drivers
"{903CE8F7-6C7B-41E6-A1CF-3BF1176264EC}" = Intel® Viiv™
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel Matrix Storage Manager
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9941F0AA-B903-4AF4-A055-83A9815CC011}" = Sonic Encoders
"{A15B3CF2-7FB7-4102-BBC9-9680B7F0825F}" = InterLok Driver Kit
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A683A2C0-821C-486F-858C-FA634DB5E864}" = EducateU
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1.1
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{AFE354A5-640F-4A23-94C8-0B441E8967CA}" = Digidesign Shared Plug-Ins 7.3
"{B0DF58A2-40DF-4465-AA56-38623EC9938C}" = Documentation & Support Launcher
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B6884A07-0305-47AE-9969-8F26FADC17DE}" = Games, Music, & Photos Launcher
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{BA688606-4B20-4982-995E-EDADC6A6817E}" = League of Legends
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C7EEF2B9-8C16-4A04-B98D-B1A952A47E55}" = Linksys Wireless-G USB Network Adapter
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D1696920-9794-4BBC-8A30-7A88763DE5A2}" = ABBYY FineReader 5.0 Sprint
"{D2988E9B-C73F-422C-AD4B-A66EBE257120}" = MCU
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{D45E8C45-B601-4A80-AFD8-E16338744DE1}" = ArcSoft Panorama Maker 4
"{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer
"{E646DCF0-5A68-11D5-B229-002078017FBF}" = Digital Line Detect
"{E9757890-7EC5-46C8-99AB-B00F07B6525C}" = Nikon Transfer
"{F45298E5-0083-426F-A668-1A2C5F04B8A0}" = FaxTools
"12133444-BF36-4d4e-B7FB-A3424C645DE4" = GemMaster Mystic
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Age of Empires 2.0" = Microsoft Age of Empires II
"Age of Empires Gold 1.0" = Microsoft Age of Empires Gold
"Age of Empires II: The Conquerors Expansion 1.0" = Microsoft Age of Empires II: The Conquerors Expansion
"ATI Display Driver" = ATI Display Driver
"B3EE3001-DC24-4cd1-8743-5692C716659F" = Otto
"BFD" = BFD
"Castles and Castles 2 - Siege and Conquest_is1" = Castles and Castles 2 - Siege and Conquest
"CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200F14F1" = Conexant D850 56K V.9x DFVc Modem
"Dell AIO Printer A920" = Dell AIO Printer A920
"Dell Digital Jukebox Driver" = Dell Digital Jukebox Driver
"Diablo II" = Diablo II
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"EHome Devices" = Media Center Extender
"EmeraldQFE2" = Windows Media Player 10 Hotfix [See EmeraldQFE2 for more information]
"End It All" = End It All
"ESPNMotion" = ESPNMotion
"Google Desktop" = Google Desktop
"Guitar Pro 5_is1" = Guitar Pro 5.0
"Intel® Quick Resume Technology" = Intel(R) Quick Resume Technology Drivers
"LimeWire" = LimeWire 5.5.16
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"McAfee Uninstall Utility" = McAfee Uninstaller
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.0.19)" = Mozilla Firefox (3.0.19)
"MSC" = McAfee Total Protection
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MSNINST" = MSN
"Picasa2" = Picasa 2
"PowerISO" = PowerISO
"PROSet" = Intel(R) PRO Network Connections Drivers
"RealPlayer 6.0" = RealPlayer Basic
"StreetPlugin" = Learn2 Player (Uninstall Only)
"uTorrent" = µTorrent
"ViewpointMediaPlayer" = Viewpoint Media Player
"Waves Diamond Bundle v5.0" = Waves Diamond Bundle v5.0
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"WebCyberCoach_wtrb" = WebCyberCoach 3.2 Dell
"WIC" = Windows Imaging Component
"WildTangent CDA" = WildTangent Web Driver
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"winusb0100" = Microsoft WinUsb 1.0
"WMCSetup" = Windows Media Connect
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01009" = Microsoft User-Mode Driver Framework Feature Pack 1.9

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2/13/2011 6:50:53 PM | Computer Name = MUSIC | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from:
with error: This network connection does not exist.

Error - 2/13/2011 6:50:55 PM | Computer Name = MUSIC | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from:
with error: This network connection does not exist.

Error - 2/13/2011 6:50:56 PM | Computer Name = MUSIC | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from:
with error: This network connection does not exist.

Error - 2/13/2011 6:50:56 PM | Computer Name = MUSIC | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from:
with error: This network connection does not exist.

Error - 2/13/2011 6:50:56 PM | Computer Name = MUSIC | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from:
with error: This network connection does not exist.

Error - 2/13/2011 6:50:56 PM | Computer Name = MUSIC | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from:
with error: This network connection does not exist.

Error - 2/13/2011 6:50:57 PM | Computer Name = MUSIC | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from:
with error: This network connection does not exist.

Error - 2/13/2011 6:50:57 PM | Computer Name = MUSIC | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from:
with error: This network connection does not exist.

Error - 2/13/2011 6:50:57 PM | Computer Name = MUSIC | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from:
with error: This network connection does not exist.

Error - 2/13/2011 6:50:57 PM | Computer Name = MUSIC | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from:
with error: This network connection does not exist.

[ IntelDH Events ]
Error - 1/29/2011 5:30:42 PM | Computer Name = MUSIC | Source = IntelQRTD | ID = 7
Description = Could not attach to EL Acpi driver.

Error - 1/31/2011 1:38:13 PM | Computer Name = MUSIC | Source = IntelQRTD | ID = 7
Description = Could not attach to EL Acpi driver.

Error - 2/2/2011 4:56:42 PM | Computer Name = MUSIC | Source = IntelQRTD | ID = 7
Description = Could not attach to EL Acpi driver.

Error - 2/4/2011 1:25:16 AM | Computer Name = MUSIC | Source = IntelQRTD | ID = 7
Description = Could not attach to EL Acpi driver.

Error - 2/4/2011 1:41:53 AM | Computer Name = MUSIC | Source = IntelQRTD | ID = 7
Description = Could not attach to EL Acpi driver.

Error - 2/6/2011 1:14:52 AM | Computer Name = MUSIC | Source = IntelQRTD | ID = 7
Description = Could not attach to EL Acpi driver.

Error - 2/8/2011 2:17:41 AM | Computer Name = MUSIC | Source = IntelQRTD | ID = 7
Description = Could not attach to EL Acpi driver.

Error - 2/8/2011 4:40:02 PM | Computer Name = MUSIC | Source = IntelQRTD | ID = 7
Description = Could not attach to EL Acpi driver.

Error - 2/13/2011 8:32:15 AM | Computer Name = MUSIC | Source = IntelQRTD | ID = 7
Description = Could not attach to EL Acpi driver.

Error - 2/13/2011 5:46:07 PM | Computer Name = MUSIC | Source = IntelQRTD | ID = 7
Description = Could not attach to EL Acpi driver.

[ System Events ]
Error - 2/13/2011 5:47:15 PM | Computer Name = MUSIC | Source = Service Control Manager | ID = 7000
Description = The Digidesign MME Refresh Service service failed to start due to
the following error: %%2

Error - 2/13/2011 5:47:15 PM | Computer Name = MUSIC | Source = Service Control Manager | ID = 7023
Description = The Intel® Quick Resume Technology Drivers service terminated with
the following error: %%203

Error - 2/13/2011 5:47:15 PM | Computer Name = MUSIC | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
Beep

Error - 2/13/2011 5:49:04 PM | Computer Name = MUSIC | Source = DCOM | ID = 10010
Description = The server {209500FC-6B45-4693-8871-6296C4843751} did not register
with DCOM within the required timeout.

Error - 2/13/2011 5:51:08 PM | Computer Name = MUSIC | Source = Service Control Manager | ID = 7023
Description = The Computer Browser service terminated with the following error:
%%1460

Error - 2/13/2011 6:51:15 PM | Computer Name = MUSIC | Source = Service Control Manager | ID = 7000
Description = The Zune Bus Enumerator Driver service failed to start due to the
following error: %%2

Error - 2/13/2011 6:51:15 PM | Computer Name = MUSIC | Source = Service Control Manager | ID = 7000
Description = The Digidesign MME Refresh Service service failed to start due to
the following error: %%2

Error - 2/13/2011 6:51:15 PM | Computer Name = MUSIC | Source = Service Control Manager | ID = 7023
Description = The Intel® Quick Resume Technology Drivers service terminated with
the following error: %%203

Error - 2/13/2011 6:51:15 PM | Computer Name = MUSIC | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
Beep

Error - 2/13/2011 6:55:30 PM | Computer Name = MUSIC | Source = Service Control Manager | ID = 7023
Description = The Computer Browser service terminated with the following error:
%%1460

ok there is the extras log.. Had to post from a different comp.. Here is the full otl log sorry bout previous ones..

OTL logfile created on: 2/13/2011 3:57:40 PM - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\ISAIAH\Desktop
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 77.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 86.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 228.13 Gb Total Space | 62.73 Gb Free Space | 27.50% Space Free | Partition Type: NTFS
Drive D: | 74.50 Gb Total Space | 48.09 Gb Free Space | 64.55% Space Free | Partition Type: NTFS

Computer Name: MUSIC | User Name: ISAIAH | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/02/13 15:56:56 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ISAIAH\Desktop\OTL.com
PRC - [2011/01/24 00:46:06 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2010/11/24 11:07:58 | 000,088,176 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2010/06/24 21:32:44 | 001,193,848 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe
PRC - [2010/04/27 16:16:24 | 000,188,136 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
PRC - [2010/04/27 16:16:24 | 000,141,792 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
PRC - [2010/04/14 11:29:58 | 000,170,144 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
PRC - [2010/04/12 01:40:16 | 000,180,224 | ---- | M] (PowerISO Computing, Inc.) -- C:\Program Files\PowerISO\PWRISOVM.EXE
PRC - [2010/04/09 15:35:04 | 000,307,672 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
PRC - [2007/10/18 20:10:42 | 000,479,232 | ---- | M] (Nikon Corporation) -- C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
PRC - [2007/02/20 18:18:32 | 000,366,400 | ---- | M] (Google Inc.) -- C:\Program Files\Picasa2\PicasaMediaDetector.exe
PRC - [2006/03/20 17:34:50 | 000,213,936 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
PRC - [2005/11/16 20:19:00 | 005,264,384 | ---- | M] (Linksys) -- C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WUSB54Gv42.exe
PRC - [2005/10/05 01:12:00 | 000,094,208 | ---- | M] () -- C:\Program Files\Dell\Media Experience\DMXLauncher.exe
PRC - [2005/07/04 15:46:04 | 000,053,307 | ---- | M] (GEMTEKS) -- C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe
PRC - [2005/06/17 05:55:58 | 000,086,140 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
PRC - [2005/03/22 14:20:44 | 000,339,968 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\stsystra.exe
PRC - [2003/10/29 00:06:00 | 000,024,576 | R--- | M] (BVRP Software) -- C:\Program Files\Digital Line Detect\DLG.exe
PRC - [2003/06/02 11:50:58 | 000,053,248 | ---- | M] (Dell Computer Corporation) -- C:\Program Files\Dell AIO Printer A920\dlbkbmon.exe
PRC - [2003/06/02 11:25:24 | 000,270,336 | ---- | M] (Dell Computer Corporation) -- C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe


========== Modules (SafeList) ==========

MOD - [2011/02/13 15:56:56 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ISAIAH\Desktop\OTL.com
MOD - [2011/01/04 17:38:44 | 000,018,176 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\SiteAdvisor\sahook.dll
MOD - [2007/03/08 08:36:28 | 000,188,928 | ---- | M] () -- C:\WINDOWS\elodoxirakipe.dll
MOD - [2006/08/25 08:45:55 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
MOD - [2004/08/10 03:00:00 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\serwvdrv.dll
MOD - [2004/08/10 03:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\umdmxfrm.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Running] -- -- (WUSB54Gv42SVC)
SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [Auto | Stopped] -- -- (DigiRefresh)
SRV - [2010/11/24 11:07:58 | 000,088,176 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2010/04/27 16:16:24 | 000,188,136 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe -- (mfefire)
SRV - [2010/04/27 16:16:24 | 000,141,792 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe -- (mfevtp)
SRV - [2010/04/15 08:45:10 | 000,364,216 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2010/04/14 11:29:58 | 000,170,144 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McProxy)
SRV - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV - [2010/03/10 09:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV - [2010/02/25 23:47:00 | 003,489,788 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2005/12/12 07:52:32 | 000,180,224 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe -- (ELService)
SRV - [2005/06/17 05:55:58 | 000,086,140 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMon) Intel(R)


========== Driver Services (SafeList) ==========

DRV - [2010/07/19 15:35:45 | 000,767,488 | ---- | M] () [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\soxjxmj.sys -- (soxjxmj)
DRV - [2010/04/27 16:16:24 | 000,385,880 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2010/04/27 16:16:24 | 000,312,616 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfefirek.sys -- (mfefirek)
DRV - [2010/04/27 16:16:24 | 000,152,320 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2010/04/27 16:16:24 | 000,095,568 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeapfk.sys -- (mfeapfk)
DRV - [2010/04/27 16:16:24 | 000,088,480 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendiskmp)
DRV - [2010/04/27 16:16:24 | 000,088,480 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendisk)
DRV - [2010/04/27 16:16:24 | 000,083,496 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mferkdet.sys -- (mferkdet)
DRV - [2010/04/27 16:16:24 | 000,082,952 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\mfetdi2k.sys -- (mfetdi2k)
DRV - [2010/04/27 16:16:24 | 000,055,456 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cfwids.sys -- (cfwids)
DRV - [2010/04/27 16:16:24 | 000,051,688 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2010/04/12 01:44:34 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2010/03/29 23:46:30 | 000,038,224 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2010/02/11 05:01:43 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2009/09/16 09:22:48 | 000,040,552 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfesmfk.sys -- (mfesmfk)
DRV - [2009/09/16 09:22:14 | 000,034,248 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mferkdk.sys -- (mferkdk)
DRV - [2007/04/03 13:59:30 | 000,083,208 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s616bus.sys -- (s616bus) Sony Ericsson Device 616 driver (WDM)
DRV - [2006/11/13 20:38:28 | 000,011,776 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\diginet.sys -- (DigiNet)
DRV - [2006/11/13 20:38:24 | 000,016,384 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\DigiFilt.sys -- (DigiFilter)
DRV - [2006/11/13 20:36:36 | 000,109,056 | ---- | M] (Digidesign, A Division of Avid Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Dalwdm.sys -- (dalwdmservice)
DRV - [2006/11/02 06:00:08 | 000,039,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\winusb.sys -- (WinUSB)
DRV - [2006/10/05 16:07:28 | 000,072,608 | ---- | M] (PACE Anti-Piracy, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\TPkd.sys -- (TPkd)
DRV - [2006/07/13 18:50:59 | 000,008,552 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)
DRV - [2005/12/12 07:52:34 | 000,010,112 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ELhid.sys -- (ELhid)
DRV - [2005/12/12 07:52:34 | 000,007,040 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ELmon.sys -- (ELmon)
DRV - [2005/12/12 07:52:34 | 000,006,912 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ELkbd.sys -- (ELkbd)
DRV - [2005/12/12 07:52:34 | 000,006,400 | ---- | M] (Intel Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ELmou.sys -- (ELmou)
DRV - [2005/12/12 07:52:32 | 000,007,808 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ELacpi.sys -- (ELacpi)
DRV - [2005/11/16 12:36:00 | 001,047,816 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2005/10/17 18:50:06 | 000,245,376 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rt2500usb.sys -- (WUSB54GPV4SRV)
DRV - [2005/08/25 13:05:24 | 000,176,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e1e5132.sys -- (e1express) Intel(R)
DRV - [2005/08/03 19:10:18 | 001,273,344 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005/06/17 03:33:40 | 000,872,064 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\iastor.sys -- (iastor)
DRV - [2005/02/01 17:18:38 | 000,017,992 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\bcm42rly.sys -- (BCM42RLY)
DRV - [2004/08/12 15:45:54 | 000,137,728 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)
DRV - [2004/08/10 03:00:00 | 000,088,448 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx)
DRV - [2004/08/10 03:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb)
DRV - [2004/08/10 03:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx)
DRV - [2004/08/10 03:00:00 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2004/08/03 21:07:44 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\amdagp.sys -- (amdagp)
DRV - [2004/08/03 21:07:44 | 000,041,088 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2004/08/03 20:29:56 | 001,897,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2003/11/17 12:59:20 | 000,212,224 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2003/11/17 12:58:02 | 000,680,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2003/11/17 12:56:26 | 001,042,432 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2001/08/17 12:07:44 | 000,019,072 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sparrow.sys -- (Sparrow)
DRV - [2001/08/17 12:07:42 | 000,030,688 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys -- (sym_u3)
DRV - [2001/08/17 12:07:40 | 000,028,384 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys -- (sym_hi)
DRV - [2001/08/17 12:07:36 | 000,032,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys -- (symc8xx)
DRV - [2001/08/17 12:07:34 | 000,016,256 | ---- | M] (Symbios Logic Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symc810.sys -- (symc810)
DRV - [2001/08/17 11:52:22 | 000,036,736 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ultra.sys -- (ultra)
DRV - [2001/08/17 11:52:20 | 000,045,312 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql12160.sys -- (ql12160)
DRV - [2001/08/17 11:52:20 | 000,040,320 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1080.sys -- (ql1080)
DRV - [2001/08/17 11:52:18 | 000,049,024 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\ql1280.sys -- (ql1280)
DRV - [2001/08/17 11:52:16 | 000,179,584 | ---- | M] (Mylex Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -- (dac2w2k)
DRV - [2001/08/17 11:52:12 | 000,017,280 | ---- | M] (American Megatrends Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys -- (mraid35x)
DRV - [2001/08/17 11:52:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc.sys -- (asc)
DRV - [2001/08/17 11:51:58 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\asc3550.sys -- (asc3550)
DRV - [2001/08/17 11:51:56 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\aliide.sys -- (AliIde)
DRV - [2001/08/17 11:51:54 | 000,006,656 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\cmdide.sys -- (CmdIde)
DRV - [2001/05/07 03:56:02 | 000,019,805 | R--- | M] (Thesycon GmbH, Germany) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbio.sys -- (USBIO) TrashTalk Drivers (usbio.sys)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8074

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Secure Search"
FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "www.yahoo.com"
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.9.1.14019
FF - prefs.js..extensions.enabledItems: piclens@cooliris.com:1.11.5
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.3
FF - prefs.js..extensions.enabledItems: {C3B746B0-13F8-4710-B565-6C10A693ADF1}:1.9.1
FF - prefs.js..keyword.URL: "http://search.search-go.net/?sid=10101053100&s="

FF - user.js..browser.search.selectedEngine: "Google"
FF - user.js..browser.search.order.1: "Google"
FF - user.js..keyword.URL: "http://search.search-go.net/?sid=10101053100&s="

FF - HKLM\software\mozilla\Firefox\Extensions\\{C3B746B0-13F8-4710-B565-6C10A693ADF1}: C:\Documents and Settings\ISAIAH\Local Settings\Application Data\{C3B746B0-13F8-4710-B565-6C10A693ADF1} [2010/07/20 15:58:34 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2011/02/02 14:00:45 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/08/03 09:27:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/04/09 15:35:09 | 000,000,000 | ---D | M]

[2009/03/09 16:53:10 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Extensions
[2009/03/09 16:53:10 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Extensions\mozswing@mozswing.org
[2011/02/13 14:59:07 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Firefox\Profiles\qy82nlj0.default\extensions
[2009/11/08 16:48:37 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Firefox\Profiles\qy82nlj0.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009/11/02 13:15:17 | 000,000,000 | ---D | M] (Cooliris) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Firefox\Profiles\qy82nlj0.default\extensions\piclens@cooliris.com
[2009/11/02 13:15:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Firefox\Profiles\qy82nlj0.default\extensions\piclens@cooliris.com-trash
[2010/10/23 16:48:04 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\ISAIAH\Application Data\Mozilla\Firefox\Profiles\qy82nlj0.default\extensions\toolbar@ask.com
[2011/02/13 14:59:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/07/20 15:58:34 | 000,000,000 | ---D | M] (XULRunner) -- C:\DOCUMENTS AND SETTINGS\ISAIAH\LOCAL SETTINGS\APPLICATION DATA\{C3B746B0-13F8-4710-B565-6C10A693ADF1}
[2009/03/09 16:51:31 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/02/02 14:00:45 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAM FILES\MCAFEE\SITEADVISOR
[2007/09/09 01:32:40 | 000,069,632 | ---- | M] () -- C:\Program Files\Mozilla Firefox\components\ffwt.dll
[2010/04/27 16:16:24 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Mozilla Firefox\components\Scriptff.dll
[2010/08/15 03:52:20 | 000,002,074 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google_search.xml
[2010/12/20 12:23:26 | 000,002,024 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\McSiteAdvisor.xml

O1 HOSTS File: ([2011/01/24 00:46:07 | 000,001,003 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.8minutedating.com
O1 - Hosts: 127.0.0.1 whysohardx.com
O1 - Hosts: 127.0.0.1 protectyourpc-11.com
O1 - Hosts: 127.0.0.1 checkserverstatux.com
O1 - Hosts: 127.0.0.1 xinmin.cn
O1 - Hosts: 127.0.0.1 xy95.cn
O1 - Hosts: 127.0.0.1 koralda.com
O1 - Hosts: 127.0.0.1 weirden.com
O1 - Hosts: 127.0.0.1 nanocloudcontroller.com
O1 - Hosts: 127.0.0.1 coo0lnet.net
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\Program Files\McAfee\MSK\mskapbho.dll ()
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20100517164317.dll (McAfee, Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (no name) - {102BAD8B-CD05-46ff-94FF-A2C1ABD5F7D5} - No CLSID value found.
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [103] File not found
O4 - HKLM..\Run: [avp] File not found
O4 - HKLM..\Run: [Dell AIO Printer A920] C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe (Dell Computer Corporation)
O4 - HKLM..\Run: [DigidesignMMERefresh] File not found
O4 - HKLM..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe ()
O4 - HKLM..\Run: [Google Desktop Search] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [ISUSPM] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [mqjybnga] C:\Documents and Settings\ISAIAH\Local Settings\Application Data\adpcdsjsb\gxrfbwbshdw.exe ()
O4 - HKLM..\Run: [Omatehefo] C:\WINDOWS\elodoxirakipe.dll ()
O4 - HKLM..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (Google Inc.)
O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKCU..\Run: [Insider] File not found
O4 - HKCU..\Run: [JDK5SWFMZY] File not found
O4 - HKCU..\Run: [mqjybnga] C:\Documents and Settings\ISAIAH\Local Settings\Application Data\adpcdsjsb\gxrfbwbshdw.exe ()
O4 - HKCU..\Run: [rihjsxan] C:\Documents and Settings\ISAIAH\Local Settings\Temp\xxemvakcr\grermimlajb.exe ()
O4 - HKCU..\Run: [rwwz] File not found
O4 - HKCU..\Run: [WinTouch] File not found
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe (BVRP Software)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Nikon Monitor.lnk = C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (Nikon Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Popup Blocker - {0D555BC6-E331-48b3-A60E-AAC0DF79438A} - Reg Error: Key error. File not found
O9 - Extra 'Tools' menuitem : Popup Blocker - {0D555BC6-E331-48b3-A60E-AAC0DF79438A} - Reg Error: Key error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O15 - HKCU\..Trusted Domains: mcafee.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: mcafee.com ([]https in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Java Plug-in 1.4.2_03)
O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O20 - AppInit_DLLs: (karina.dat\system32\) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\jkklmno: DllName - jkklmno.dll - File not found
O20 - Winlogon\Notify\mljkhfd: DllName - mljkhfd.dll - File not found
O20 - Winlogon\Notify\natva: DllName - C:\Documents and Settings\ISAIAH\Application Data\Propellerhead Software\natva.dll - File not found
O20 - Winlogon\Notify\ssqpm: DllName - C:\WINDOWS\system32\ssqpm.dll - File not found
O24 - Desktop Components:0 () - C:\Program Files\Common Files\rtelek.html
O24 - Desktop Components:1 (My Current Home Page) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\ISAIAH\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\ISAIAH\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O30 - LSA: Authentication Packages - (C:\WINDOWS\system32\vtutq.dll) - File not found
O30 - LSA: Authentication Packages - (nwprovau) - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/08/16 02:43:04 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{1324bdb5-dcff-11dc-a3eb-0018f832ea63}\Shell\AutoRun\command - "" = G:\wd_windows_tools\setup.exe
O33 - MountPoints2\{196229d6-dc5e-11de-a652-00137222e879}\Shell - "" = AutoRun
O33 - MountPoints2\{196229d6-dc5e-11de-a652-00137222e879}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{196229d6-dc5e-11de-a652-00137222e879}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}\Shell\AutoRun\command - "" = E:\setup.exe
O33 - MountPoints2\{a32ee908-2761-11dc-a263-00137222e879}\Shell - "" = AutoRun
O33 - MountPoints2\{a32ee908-2761-11dc-a263-00137222e879}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{a32ee908-2761-11dc-a263-00137222e879}\Shell\AutoRun\command - "" = H:\LaunchU3.exe -a
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O36 - AppCertDlls: doskhone - (C:\WINDOWS\system32\bootdosx.dll) - File not found
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: HidServ - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: mcmscsvc - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootMin: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: McMPFSvc - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootNet: mcmscsvc - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootNet: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SafeBootNet: mfefire - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.)
SafeBootNet: mfefirek - C:\WINDOWS\system32\drivers\mfefirek.sys (McAfee, Inc.)
SafeBootNet: mfefirek.sys - C:\WINDOWS\system32\drivers\mfefirek.sys (McAfee, Inc.)
SafeBootNet: mfehidk - C:\WINDOWS\system32\drivers\mfehidk.sys (McAfee, Inc.)
SafeBootNet: mfehidk.sys - C:\WINDOWS\system32\drivers\mfehidk.sys (McAfee, Inc.)
SafeBootNet: mfevtp - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe (McAfee, Inc.)
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: nm - C:\WINDOWS\system32\drivers\nmnt.sys (Microsoft Corporation)
SafeBootNet: nm.sys - C:\WINDOWS\system32\drivers\nmnt.sys (Microsoft Corporation)
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {03F998B2-0E00-11D3-A498-00104B6EB52E} - Viewpoint Media Player
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} - Viewpoint Media Player
ActiveX: {1BC46932-21B2-4130-86E0-B4EB4F7A7A7B} - Microsoft .NET Framework 1.0 Hotfix (KB887998)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {29E7D24F-BF30-45E7-8A40-AD27AFD8F5C6} - Microsoft .NET Framework 1.0 Hotfix (KB979904)
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {407408d4-94ed-4d86-ab69-a7f649d112ee} - %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection QuickLaunchShortcut 640 %systemroot%\inf\mcdftreg.inf
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4b218e3e-bc98-4770-93d3-2731b9329278} - %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection MarketplaceLinkInstall 896 %systemroot%\inf\ie.inf
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {8b15971b-5355-4c82-8c07-7e181ea07608} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {94de52c8-2d59-4f1b-883e-79663d2d9a8c} - Fax Provider
ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} -
ActiveX: {BDE0FA43-6952-4BA8-8C58-09AF690F88E1} - Microsoft .NET Framework 1.0 Hotfix (KB930494)
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E8EA5BD6-D931-4001-ABF6-81BAA500360A} - Microsoft .NET Framework 1.0 Hotfix (KB953295)
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {FDC11A6F-17D1-48f9-9EA3-9051954BAA24} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE
ActiveX: KB910393 - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\EasyCDBlock.inf,PerUserInstall

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: wave - C:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (17183584330711040)

========== Files/Folders - Created Within 30 Days ==========

[2011/02/13 15:56:53 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\ISAIAH\Desktop\OTL.com
[2011/02/13 15:50:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\McAfee
[2011/02/13 15:30:02 | 000,000,000 | ---D | C] -- C:\Riot Games
[2011/02/13 15:30:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Riot Games
[2011/02/13 14:54:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ISAIAH\Desktop\League of Legends
[2011/02/13 14:54:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\PMB Files
[2011/02/13 14:54:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PMB Files
[2011/02/13 14:53:39 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks
[2011/02/03 22:38:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO
[2011/02/03 22:38:18 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO
[2011/02/02 14:14:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ISAIAH\Desktop\Commandos Complete Collection-Windows 7 Compatible
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/02/13 16:01:03 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2011/02/13 15:56:56 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\ISAIAH\Desktop\OTL.com
[2011/02/13 15:51:02 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/02/13 15:49:50 | 000,000,286 | -H-- | M] () -- C:\WINDOWS\tasks\{8C3FDD81-7AE0-4605-A46A-2488B179F2A3}.job
[2011/02/13 15:49:50 | 000,000,282 | -H-- | M] () -- C:\WINDOWS\tasks\c56b432a.job
[2011/02/13 15:49:45 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/02/13 15:49:42 | 2145,554,432 | -HS- | M] () -- C:\hiberfil.sys
[2011/02/13 15:45:29 | 000,658,944 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Desktop\MicrosoftFixit50191.msi
[2011/02/13 15:35:23 | 000,001,614 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Play League of Legends.lnk
[2011/02/13 15:15:01 | 000,000,416 | ---- | M] () -- C:\WINDOWS\tasks\Updater.job
[2011/02/13 14:52:59 | 002,257,408 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Desktop\LeagueofLegends.exe
[2011/02/13 14:47:38 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Nmajoda.bin
[2011/02/07 23:32:01 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2011/01/28 14:05:52 | 000,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for
[2011/01/25 16:10:37 | 000,122,368 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/24 00:46:07 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\explorer.exe
[2011/01/24 00:46:06 | 001,033,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2011/01/16 17:29:24 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdu.DAT
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/02/13 15:45:30 | 000,658,944 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Desktop\MicrosoftFixit50191.msi
[2011/02/13 15:35:23 | 000,001,614 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Play League of Legends.lnk
[2011/02/13 14:52:59 | 002,257,408 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Desktop\LeagueofLegends.exe
[2011/01/28 14:05:52 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn
[2011/01/28 14:05:52 | 000,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for
[2010/07/19 15:35:29 | 000,767,488 | ---- | C] () -- C:\WINDOWS\System32\drivers\soxjxmj.sys
[2009/05/18 19:05:09 | 000,000,256 | ---- | C] () -- C:\WINDOWS\dellstat.ini
[2009/05/18 19:04:52 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\dlbkvs.dll
[2009/05/18 19:04:13 | 000,000,255 | ---- | C] () -- C:\WINDOWS\System32\dlbkcoin.ini
[2008/12/25 09:08:37 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Fonts
[2008/12/25 09:08:37 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\Flowers
[2008/12/25 09:08:37 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdu.DAT
[2008/12/25 09:08:37 | 000,000,012 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Galaxy Swirl
[2008/10/07 09:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008/10/07 09:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2008/06/18 18:59:34 | 000,012,875 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\faho.reg
[2008/06/17 18:05:19 | 000,015,883 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\falabum.lib
[2008/06/13 00:06:19 | 000,018,774 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\ifuvag._sy
[2008/06/13 00:06:19 | 000,018,543 | ---- | C] () -- C:\WINDOWS\ydemymudu.sys
[2008/06/13 00:06:19 | 000,017,908 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\acihas.db
[2008/06/13 00:06:19 | 000,016,908 | ---- | C] () -- C:\Program Files\Common Files\ycawumyv._sy
[2008/06/13 00:06:19 | 000,016,537 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\ewyfig.dll
[2008/06/13 00:06:19 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\olylopu.sys
[2008/06/13 00:06:19 | 000,014,240 | ---- | C] () -- C:\Program Files\Common Files\yzyver.dl
[2008/06/13 00:06:19 | 000,013,664 | ---- | C] () -- C:\Program Files\Common Files\ygyjefon.bat
[2008/06/13 00:06:19 | 000,010,621 | ---- | C] () -- C:\Program Files\Common Files\rejupyvys.ban
[2008/06/13 00:06:19 | 000,010,255 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\igifuxyve.inf
[2008/06/13 00:06:19 | 000,010,012 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\yrig.db
[2008/06/10 11:18:14 | 000,018,861 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\abacaqahu.pif
[2008/06/10 11:18:14 | 000,016,345 | ---- | C] () -- C:\Program Files\Common Files\awudigyby.dll
[2008/06/10 11:18:14 | 000,012,111 | ---- | C] () -- C:\Program Files\Common Files\edusysujez.inf
[2008/06/10 11:18:14 | 000,011,457 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\uboxiled.scr
[2008/06/10 11:18:13 | 000,018,698 | ---- | C] () -- C:\Program Files\Common Files\budedawyv.dat
[2008/06/10 11:18:13 | 000,018,618 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\mugoqiv.dll
[2008/06/10 11:18:13 | 000,018,008 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\ycapucehi.bin
[2008/06/10 11:18:13 | 000,017,878 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\ratuda._sy
[2008/06/10 11:18:13 | 000,014,898 | ---- | C] () -- C:\Program Files\Common Files\uvyvany.reg
[2008/06/10 11:18:13 | 000,014,210 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\ujedoka.sys
[2008/06/10 11:18:13 | 000,013,654 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\qurolesa.bat
[2008/06/10 11:18:13 | 000,011,455 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\cuhah.pif
[2008/06/08 13:56:03 | 000,010,401 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\poda.sys
[2008/06/05 18:47:23 | 000,014,813 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\jawyt.inf
[2008/06/02 18:59:32 | 000,019,846 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\tesisyh.db
[2008/06/02 18:59:32 | 000,019,404 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\qanekufod.com
[2008/06/02 18:59:32 | 000,019,221 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ehyxig.dll
[2008/06/02 18:59:32 | 000,018,525 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ypipudy.lib
[2008/06/02 18:59:32 | 000,018,228 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\ygumax.inf
[2008/06/02 18:59:32 | 000,018,062 | ---- | C] () -- C:\Program Files\Common Files\aticure.vbs

[2008/06/02 18:59:32 | 000,017,098 | ---- | C] () -- C:\Program Files\Common Files\ynyro.scr
[2008/06/02 18:59:32 | 000,016,029 | ---- | C] () -- C:\Program Files\Common Files\widar.bat
[2008/06/02 18:59:32 | 000,014,650 | ---- | C] () -- C:\Program Files\Common Files\qexykidu.sys
[2008/06/02 18:59:32 | 000,013,852 | ---- | C] () -- C:\WINDOWS\ytatuh.sys
[2008/06/02 18:59:32 | 000,013,094 | ---- | C] () -- C:\Program Files\Common Files\mutetidid.sys
[2008/06/02 18:59:32 | 000,012,227 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\eqagilok.com
[2008/06/02 18:59:32 | 000,012,151 | ---- | C] () -- C:\WINDOWS\anajubude.dll
[2008/06/02 18:59:32 | 000,010,463 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\aponaqyno._sy
[2008/04/06 20:03:30 | 000,751,830 | -HS- | C] () -- C:\WINDOWS\System32\wrsgmnak.ini
[2008/04/05 20:02:47 | 000,708,827 | -HS- | C] () -- C:\WINDOWS\System32\bibjyfgv.ini
[2008/04/03 20:32:43 | 000,693,426 | -HS- | C] () -- C:\WINDOWS\System32\aktlordj.ini
[2008/04/02 20:31:45 | 000,000,872 | -HS- | C] () -- C:\WINDOWS\System32\llyvdkeu.ini
[2008/04/01 20:30:26 | 001,926,046 | -HS- | C] () -- C:\WINDOWS\System32\hjbvkiou.ini
[2008/03/31 17:34:19 | 001,264,929 | -HS- | C] () -- C:\WINDOWS\System32\mjoleakv.ini
[2008/03/30 09:40:39 | 001,189,162 | -HS- | C] () -- C:\WINDOWS\System32\erwrnott.ini
[2008/03/28 20:26:41 | 001,244,553 | -HS- | C] () -- C:\WINDOWS\System32\gafwxjox.ini
[2008/03/27 20:28:00 | 001,238,104 | -HS- | C] () -- C:\WINDOWS\System32\bhiayjvo.ini
[2008/03/26 20:41:01 | 001,237,984 | -HS- | C] () -- C:\WINDOWS\System32\pbfdocae.ini
[2008/03/25 19:59:08 | 001,419,428 | -HS- | C] () -- C:\WINDOWS\System32\xnsijdbw.ini
[2008/03/25 19:43:21 | 001,473,920 | -HS- | C] () -- C:\WINDOWS\System32\hwbemffm.ini
[2008/03/24 19:38:19 | 001,566,519 | -HS- | C] () -- C:\WINDOWS\System32\ywpmijcw.ini
[2008/03/23 19:44:37 | 001,493,091 | -HS- | C] () -- C:\WINDOWS\System32\oewbetkc.ini
[2008/03/23 17:14:37 | 001,605,203 | -HS- | C] () -- C:\WINDOWS\System32\xqqxsgtl.ini
[2008/03/22 17:11:38 | 001,605,143 | -HS- | C] () -- C:\WINDOWS\System32\qwpditvp.ini
[2008/03/21 17:09:48 | 001,605,083 | -HS- | C] () -- C:\WINDOWS\System32\jrwspefa.ini
[2008/03/19 19:18:54 | 001,604,843 | -HS- | C] () -- C:\WINDOWS\System32\hxuaywho.ini
[2008/03/19 19:12:46 | 000,358,990 | -HS- | C] () -- C:\WINDOWS\System32\qtutv.ini2
[2008/03/19 19:12:45 | 000,358,990 | -HS- | C] () -- C:\WINDOWS\System32\qtutv.ini
[2008/03/19 18:48:49 | 000,000,035 | ---- | C] () -- C:\WINDOWS\Blink.ini
[2008/03/14 18:13:36 | 001,604,543 | -HS- | C] () -- C:\WINDOWS\System32\oabyvkil.ini
[2008/03/13 16:44:02 | 000,950,349 | -HS- | C] () -- C:\WINDOWS\System32\omylvsue.ini
[2008/03/12 19:24:03 | 000,833,340 | -HS- | C] () -- C:\WINDOWS\System32\xqavynef.ini
[2008/03/11 18:35:10 | 000,852,472 | -HS- | C] () -- C:\WINDOWS\System32\yskmnema.ini
[2008/03/10 18:22:20 | 000,881,799 | -HS- | C] () -- C:\WINDOWS\System32\rnbkucmc.ini
[2008/03/09 08:36:54 | 000,938,203 | -HS- | C] () -- C:\WINDOWS\System32\qyylyieu.ini
[2008/03/08 17:50:18 | 000,870,157 | -HS- | C] () -- C:\WINDOWS\System32\biapudhi.ini
[2008/03/07 17:47:17 | 000,870,299 | -HS- | C] () -- C:\WINDOWS\System32\snktbkmi.ini
[2008/03/06 20:21:38 | 000,874,946 | -HS- | C] () -- C:\WINDOWS\System32\gfwtjbac.ini
[2008/03/05 18:07:24 | 000,904,635 | -HS- | C] () -- C:\WINDOWS\System32\dhbouiot.ini
[2008/03/04 18:11:32 | 000,937,960 | -HS- | C] () -- C:\WINDOWS\System32\bfcxidcf.ini
[2008/03/03 18:48:09 | 000,932,674 | -HS- | C] () -- C:\WINDOWS\System32\ngvqbyrf.ini
[2008/03/01 14:04:39 | 001,035,882 | -HS- | C] () -- C:\WINDOWS\System32\otgmcvei.ini
[2008/02/29 20:14:52 | 000,952,965 | -HS- | C] () -- C:\WINDOWS\System32\fqnfcyqb.ini
[2008/02/29 18:36:05 | 001,054,031 | -HS- | C] () -- C:\WINDOWS\System32\qyavbewr.ini
[2008/02/28 18:35:36 | 000,936,828 | -HS- | C] () -- C:\WINDOWS\System32\spannrky.ini
[2008/02/27 18:07:13 | 000,948,660 | -HS- | C] () -- C:\WINDOWS\System32\lqncmiie.ini
[2008/02/26 18:10:02 | 000,935,000 | -HS- | C] () -- C:\WINDOWS\System32\wdflynik.ini
[2008/02/25 17:45:32 | 000,934,853 | -HS- | C] () -- C:\WINDOWS\System32\ihukixxc.ini
[2008/02/24 17:17:24 | 001,007,463 | -HS- | C] () -- C:\WINDOWS\System32\hnxwqwwv.ini
[2008/02/24 15:54:54 | 000,983,701 | -HS- | C] () -- C:\WINDOWS\System32\oswwjttn.ini
[2008/02/24 02:24:55 | 000,983,581 | -HS- | C] () -- C:\WINDOWS\System32\qykqgyyu.ini
[2008/02/23 16:38:07 | 000,983,461 | -HS- | C] () -- C:\WINDOWS\System32\vwwweloy.ini
[2008/02/23 14:50:24 | 000,983,368 | -HS- | C] () -- C:\WINDOWS\System32\cdogoesv.ini
[2008/02/22 18:50:24 | 000,983,775 | -HS- | C] () -- C:\WINDOWS\System32\sxpiedps.ini
[2008/02/22 18:29:43 | 001,004,140 | -HS- | C] () -- C:\WINDOWS\System32\mhxqtyyc.ini
[2008/02/20 20:23:29 | 001,069,720 | -HS- | C] () -- C:\WINDOWS\System32\tnhqrnri.ini
[2008/02/20 17:53:33 | 001,014,040 | -HS- | C] () -- C:\WINDOWS\System32\dmtjmkbc.ini
[2008/02/19 18:19:23 | 000,985,151 | -HS- | C] () -- C:\WINDOWS\System32\fdvyvocb.ini
[2008/02/18 17:59:17 | 001,042,595 | -HS- | C] () -- C:\WINDOWS\System32\cepumbfi.ini
[2008/02/17 10:49:24 | 001,035,193 | -HS- | C] () -- C:\WINDOWS\System32\bdwqogqj.ini
[2008/02/17 02:15:26 | 001,045,167 | -HS- | C] () -- C:\WINDOWS\System32\nyophkwm.ini
[2008/02/17 01:28:20 | 001,045,047 | -HS- | C] () -- C:\WINDOWS\System32\lkrovclj.ini
[2008/02/17 00:48:23 | 001,044,927 | -HS- | C] () -- C:\WINDOWS\System32\ftpuaubq.ini
[2008/02/16 18:54:58 | 001,044,801 | -HS- | C] () -- C:\WINDOWS\System32\cceeffgu.ini
[2008/02/16 12:47:58 | 001,061,158 | -HS- | C] () -- C:\WINDOWS\System32\grujckfk.ini
[2008/02/15 18:54:20 | 001,197,530 | -HS- | C] () -- C:\WINDOWS\System32\eyvudvaf.ini
[2008/02/14 17:57:10 | 001,123,247 | -HS- | C] () -- C:\WINDOWS\System32\bfyxecon.ini
[2008/02/13 18:46:33 | 001,116,793 | -HS- | C] () -- C:\WINDOWS\System32\rvphiftw.ini
[2008/02/13 17:41:18 | 001,183,101 | -HS- | C] () -- C:\WINDOWS\System32\imbmurui.ini
[2008/02/12 21:35:50 | 001,166,818 | -HS- | C] () -- C:\WINDOWS\System32\njhrqojm.ini
[2008/02/12 17:53:41 | 001,222,050 | -HS- | C] () -- C:\WINDOWS\System32\uuwjbfmm.ini
[2008/02/11 20:30:31 | 001,211,101 | -HS- | C] () -- C:\WINDOWS\System32\mnchrxtg.ini
[2008/02/11 18:00:47 | 001,221,257 | -HS- | C] () -- C:\WINDOWS\System32\eybmxdit.ini
[2008/02/10 14:20:00 | 001,218,806 | -HS- | C] () -- C:\WINDOWS\System32\gwnaxtqc.ini
[2008/02/10 13:50:20 | 001,218,650 | -HS- | C] () -- C:\WINDOWS\System32\jelirnkq.ini
[2008/02/10 13:02:32 | 001,218,530 | -HS- | C] () -- C:\WINDOWS\System32\brbkvaiw.ini
[2008/02/09 17:57:26 | 001,218,410 | -HS- | C] () -- C:\WINDOWS\System32\bqmpytoo.ini
[2008/02/09 03:32:52 | 001,218,389 | -HS- | C] () -- C:\WINDOWS\System32\fewwckjm.ini
[2008/02/08 17:54:25 | 001,221,986 | -HS- | C] () -- C:\WINDOWS\System32\rgxwjmky.ini
[2008/02/07 17:42:48 | 001,219,888 | -HS- | C] () -- C:\WINDOWS\System32\mapijvov.ini
[2008/02/06 20:57:49 | 001,200,161 | -HS- | C] () -- C:\WINDOWS\System32\xcggsfpt.ini
[2008/02/06 18:00:55 | 001,199,738 | -HS- | C] () -- C:\WINDOWS\System32\wyrtajwi.ini
[2008/02/05 22:08:55 | 001,133,610 | -HS- | C] () -- C:\WINDOWS\System32\jmkdqlnd.ini
[2008/02/05 21:20:43 | 001,133,568 | -HS- | C] () -- C:\WINDOWS\System32\csjukwgg.ini
[2008/02/05 19:43:58 | 001,135,893 | -HS- | C] () -- C:\WINDOWS\System32\qrpbxaok.ini
[2008/02/04 20:24:56 | 001,130,160 | -HS- | C] () -- C:\WINDOWS\System32\tvjjtjtm.ini
[2008/02/04 16:53:24 | 001,131,600 | -HS- | C] () -- C:\WINDOWS\System32\indqnlde.ini
[2008/02/04 08:39:01 | 001,131,825 | -HS- | C] () -- C:\WINDOWS\System32\ggmmoxpx.ini
[2008/02/04 07:02:18 | 001,131,615 | -HS- | C] () -- C:\WINDOWS\System32\iqesrqwp.ini
[2008/02/03 14:06:28 | 001,127,425 | -HS- | C] () -- C:\WINDOWS\System32\ieewitlt.ini
[2008/02/03 11:32:12 | 001,127,305 | -HS- | C] () -- C:\WINDOWS\System32\gqwyhnjk.ini
[2008/02/03 01:27:55 | 001,127,176 | -HS- | C] () -- C:\WINDOWS\System32\shyceeqv.ini
[2008/02/03 00:57:24 | 001,127,056 | -HS- | C] () -- C:\WINDOWS\System32\wseorjwy.ini
[2008/02/02 16:07:03 | 001,126,999 | -HS- | C] () -- C:\WINDOWS\System32\nvqckvib.ini
[2008/02/01 20:04:56 | 001,162,308 | -HS- | C] () -- C:\WINDOWS\System32\kfmxisia.ini
[2008/01/31 21:18:18 | 001,155,979 | -HS- | C] () -- C:\WINDOWS\System32\uetnwnaa.ini
[2008/01/31 20:30:24 | 001,155,841 | -HS- | C] () -- C:\WINDOWS\System32\pdyqrqhx.ini
[2008/01/31 17:39:24 | 001,168,115 | -HS- | C] () -- C:\WINDOWS\System32\kmhwybwm.ini
[2008/01/30 19:00:42 | 001,180,733 | -HS- | C] () -- C:\WINDOWS\System32\bpyexjiw.ini
[2008/01/29 20:50:45 | 001,167,221 | -HS- | C] () -- C:\WINDOWS\System32\tanhgrgf.ini
[2008/01/28 22:25:33 | 001,162,207 | -HS- | C] () -- C:\WINDOWS\System32\bhqmxblq.ini
[2008/01/28 21:37:22 | 001,162,339 | -HS- | C] () -- C:\WINDOWS\System32\xsblinxm.ini
[2008/01/28 20:55:25 | 001,162,225 | -HS- | C] () -- C:\WINDOWS\System32\klsfjpeo.ini
[2008/01/27 19:46:23 | 001,143,880 | -HS- | C] () -- C:\WINDOWS\System32\upawovfe.ini
[2008/01/27 18:48:52 | 001,143,594 | -HS- | C] () -- C:\WINDOWS\System32\fqbhpvnk.ini
[2008/01/27 15:09:09 | 001,143,472 | -HS- | C] () -- C:\WINDOWS\System32\xkdsehcg.ini
[2008/01/26 16:50:16 | 001,143,200 | -HS- | C] () -- C:\WINDOWS\System32\nlpcnabj.ini
[2008/01/26 12:03:06 | 001,142,692 | -HS- | C] () -- C:\WINDOWS\System32\mgpippsg.ini
[2008/01/25 17:33:56 | 000,976,342 | -HS- | C] () -- C:\WINDOWS\System32\pdglbkip.ini
[2008/01/24 19:26:50 | 000,994,174 | -HS- | C] () -- C:\WINDOWS\System32\bctutbjx.ini
[2008/01/23 18:13:23 | 001,022,387 | -HS- | C] () -- C:\WINDOWS\System32\nwgpxfto.ini
[2008/01/22 18:22:20 | 000,983,792 | -HS- | C] () -- C:\WINDOWS\System32\cefrseuk.ini
[2008/01/21 19:10:00 | 000,957,628 | -HS- | C] () -- C:\WINDOWS\System32\hsgfhxhc.ini
[2008/01/21 17:53:56 | 000,968,098 | -HS- | C] () -- C:\WINDOWS\System32\ffyvykek.ini
[2008/01/20 12:14:46 | 000,950,455 | -HS- | C] () -- C:\WINDOWS\System32\tlrepmbj.ini
[2008/01/19 12:58:10 | 000,952,502 | -HS- | C] () -- C:\WINDOWS\System32\bljqvnnj.ini
[2008/01/18 17:36:18 | 001,002,748 | -HS- | C] () -- C:\WINDOWS\System32\dwyafkbc.ini
[2008/01/17 18:17:41 | 001,070,167 | -HS- | C] () -- C:\WINDOWS\System32\plktyyww.ini
[2008/01/16 17:45:09 | 001,059,861 | -HS- | C] () -- C:\WINDOWS\System32\ovduukbq.ini
[2008/01/15 17:56:14 | 001,055,118 | -HS- | C] () -- C:\WINDOWS\System32\lrikucqt.ini
[2008/01/14 18:09:10 | 001,050,556 | -HS- | C] () -- C:\WINDOWS\System32\kcnxbkel.ini
[2008/01/13 15:01:22 | 001,053,893 | -HS- | C] () -- C:\WINDOWS\System32\trwhomhy.ini
[2008/01/13 12:18:26 | 001,053,809 | -HS- | C] () -- C:\WINDOWS\System32\kfinfudv.ini
[2008/01/12 13:13:33 | 001,053,675 | -HS- | C] () -- C:\WINDOWS\System32\hsllfxmj.ini
[2008/01/11 18:06:20 | 001,056,755 | -HS- | C] () -- C:\WINDOWS\System32\gunysesa.ini
[2008/01/10 17:55:54 | 001,061,177 | -HS- | C] () -- C:\WINDOWS\System32\wlflifnk.ini
[2008/01/09 18:08:08 | 001,046,237 | -HS- | C] () -- C:\WINDOWS\System32\rbtfpfuy.ini
[2008/01/09 17:54:30 | 001,046,030 | -HS- | C] () -- C:\WINDOWS\System32\mmfyfgfj.ini
[2008/01/08 17:49:48 | 001,050,877 | -HS- | C] () -- C:\WINDOWS\System32\fdtnaapw.ini
[2008/01/07 23:31:48 | 001,045,452 | -HS- | C] () -- C:\WINDOWS\System32\uefwpisr.ini
[2008/01/07 22:04:25 | 001,045,328 | -HS- | C] () -- C:\WINDOWS\System32\bijldhur.ini
[2008/01/07 00:43:52 | 001,045,451 | -HS- | C] () -- C:\WINDOWS\System32\noeabhpo.ini
[2008/01/06 17:51:25 | 001,045,358 | -HS- | C] () -- C:\WINDOWS\System32\kovtefdv.ini
[2008/01/06 13:08:26 | 001,045,189 | -HS- | C] () -- C:\WINDOWS\System32\qbiueiwy.ini
[2008/01/05 12:35:29 | 001,045,060 | -HS- | C] () -- C:\WINDOWS\System32\xeddffeb.ini
[2008/01/05 00:49:32 | 001,044,967 | -HS- | C] () -- C:\WINDOWS\System32\heobpqib.ini
[2008/01/04 17:51:18 | 001,044,820 | -HS- | C] () -- C:\WINDOWS\System32\dedasqjx.ini
[2008/01/03 17:42:52 | 001,044,700 | -HS- | C] () -- C:\WINDOWS\System32\nqvrggpl.ini
[2008/01/02 19:52:12 | 001,032,241 | -HS- | C] () -- C:\WINDOWS\System32\htlmhlly.ini
[2008/01/02 18:11:43 | 001,032,067 | -HS- | C] () -- C:\WINDOWS\System32\wdfrwtfh.ini
[2008/01/01 19:20:51 | 001,031,706 | -HS- | C] () -- C:\WINDOWS\System32\cixssgfp.ini
[2007/12/31 22:35:49 | 001,031,559 | -HS- | C] () -- C:\WINDOWS\System32\seqkkviv.ini
[2007/12/31 14:22:53 | 001,031,439 | -HS- | C] () -- C:\WINDOWS\System32\qqhvmpee.ini
[2007/12/30 14:48:47 | 001,031,401 | -HS- | C] () -- C:\WINDOWS\System32\sbcqvmlu.ini
[2007/12/30 11:11:28 | 001,031,235 | -HS- | C] () -- C:\WINDOWS\System32\vaoascpm.ini
[2007/12/24 11:13:28 | 001,311,078 | -HS- | C] () -- C:\WINDOWS\System32\jeyaqwqo.ini
[2007/12/22 08:39:55 | 001,313,151 | -HS- | C] () -- C:\WINDOWS\System32\naowmnga.ini
[2007/12/21 18:25:57 | 001,376,077 | -HS- | C] () -- C:\WINDOWS\System32\eyiddlhl.ini
[2007/12/21 18:07:10 | 001,420,193 | -HS- | C] () -- C:\WINDOWS\System32\lnogyalm.ini
[2007/12/20 18:08:10 | 001,405,880 | -HS- | C] () -- C:\WINDOWS\System32\bwhmbsil.ini
[2007/12/19 21:08:00 | 001,399,909 | -HS- | C] () -- C:\WINDOWS\System32\dttcfpje.ini
[2007/12/18 21:16:26 | 001,366,693 | -HS- | C] () -- C:\WINDOWS\System32\rhfvhuxl.ini
[2007/12/17 04:59:15 | 001,337,259 | -HS- | C] () -- C:\WINDOWS\System32\bqycbnom.ini
[2007/12/16 10:44:24 | 001,338,199 | -HS- | C] () -- C:\WINDOWS\System32\vrxteeor.ini
[2007/12/14 22:59:26 | 001,341,998 | -HS- | C] () -- C:\WINDOWS\System32\csrdpwii.ini
[2007/12/13 18:10:50 | 001,328,986 | -HS- | C] () -- C:\WINDOWS\System32\njkfmbbx.ini
[2007/12/12 22:59:50 | 000,000,263 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2007/12/12 21:01:29 | 001,283,621 | -HS- | C] () -- C:\WINDOWS\System32\lysqbuso.ini
[2007/12/12 18:17:56 | 001,293,381 | -HS- | C] () -- C:\WINDOWS\System32\tjjmamum.ini
[2007/12/10 22:19:27 | 001,345,120 | -HS- | C] () -- C:\WINDOWS\System32\wurjvehj.ini
[2007/12/10 21:39:50 | 001,200,796 | -HS- | C] () -- C:\WINDOWS\System32\ppoudlia.ini
[2007/12/07 18:09:23 | 001,252,634 | -HS- | C] () -- C:\WINDOWS\System32\qquyhxxe.ini
[2007/12/06 15:22:48 | 001,183,941 | -HS- | C] () -- C:\WINDOWS\System32\fvobyjus.ini
[2007/12/05 17:40:50 | 001,153,175 | -HS- | C] () -- C:\WINDOWS\System32\lnycpjuh.ini
[2007/12/04 22:59:06 | 001,112,234 | -HS- | C] () -- C:\WINDOWS\System32\knekwedl.ini
[2007/12/04 19:45:52 | 000,999,358 | -HS- | C] () -- C:\WINDOWS\System32\sngwodtn.ini
[2007/12/03 21:28:03 | 000,999,298 | -HS- | C] () -- C:\WINDOWS\System32\atodqijj.ini
[2007/12/03 18:45:43 | 001,000,642 | -HS- | C] () -- C:\WINDOWS\System32\evikmetg.ini
[2007/12/02 03:34:08 | 001,002,998 | -HS- | C] () -- C:\WINDOWS\System32\dthamllm.ini
[2007/11/29 17:59:50 | 000,922,347 | -HS- | C] () -- C:\WINDOWS\System32\whnsdnpk.ini
[2007/11/24 11:08:34 | 001,092,095 | -HS- | C] () -- C:\WINDOWS\System32\dlvmrhmo.ini
[2007/11/22 17:19:59 | 000,793,074 | -HS- | C] () -- C:\WINDOWS\System32\dtjuodqi.ini
[2007/11/21 20:38:52 | 000,789,481 | -HS- | C] () -- C:\WINDOWS\System32\sspijtjd.ini
[2007/11/21 19:38:51 | 000,843,027 | -HS- | C] () -- C:\WINDOWS\System32\rcoopbnd.ini
[2007/11/20 20:34:41 | 000,689,502 | -HS- | C] () -- C:\WINDOWS\System32\wtpwaghf.ini
[2007/11/18 12:52:57 | 000,678,085 | -HS- | C] () -- C:\WINDOWS\System32\fuyxqmkr.ini
[2007/11/17 12:50:06 | 000,677,920 | -HS- | C] () -- C:\WINDOWS\System32\egcrpvho.ini
[2007/11/17 09:19:13 | 001,239,529 | -HS- | C] () -- C:\WINDOWS\System32\kjswqhjx.ini
[2007/11/15 17:54:13 | 001,239,529 | -HS- | C] () -- C:\WINDOWS\System32\frtctivj.ini
[2007/11/12 17:47:19 | 001,306,718 | -HS- | C] () -- C:\WINDOWS\System32\vtfeswjc.ini
[2007/11/11 21:45:11 | 001,216,392 | -HS- | C] () -- C:\WINDOWS\System32\wmiwmeva.ini
[2007/11/10 21:42:11 | 001,216,263 | -HS- | C] () -- C:\WINDOWS\System32\qqfsrtaj.ini
[2007/11/09 21:42:13 | 001,218,528 | -HS- | C] () -- C:\WINDOWS\System32\wgyobblk.ini
[2007/11/08 18:55:59 | 001,210,366 | -HS- | C] () -- C:\WINDOWS\System32\nhxfkdix.ini
[2007/11/06 19:21:14 | 001,212,057 | -HS- | C] () -- C:\WINDOWS\System32\uhkepgjn.ini
[2007/10/29 16:58:18 | 001,199,834 | -HS- | C] () -- C:\WINDOWS\System32\bvdctdpp.ini
[2007/10/25 20:49:14 | 001,199,660 | -HS- | C] () -- C:\WINDOWS\System32\unwycxep.ini
[2007/10/25 18:02:12 | 000,693,481 | -HS- | C] () -- C:\WINDOWS\System32\taowgixo.ini
[2007/10/22 17:18:05 | 000,693,730 | -HS- | C] () -- C:\WINDOWS\System32\ofoovnmx.ini
[2007/10/22 17:00:33 | 000,693,610 | -HS- | C] () -- C:\WINDOWS\System32\cwifjwkd.ini
[2007/10/22 16:54:41 | 000,000,246 | ---- | C] () -- C:\Program Files\Common Files\qucav655
[2007/10/21 20:36:52 | 000,693,490 | -HS- | C] () -- C:\WINDOWS\System32\uaefkwyb.ini
[2007/10/21 20:22:31 | 000,006,520 | -HS- | C] () -- C:\WINDOWS\System32\mpqss.ini
[2007/10/20 14:42:45 | 000,230,137 | -HS- | C] () -- C:\WINDOWS\System32\mpqss.ini2
[2007/09/11 21:35:09 | 000,000,198 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\G-Force Prefs (WindowsMediaPlayer).txt
[2007/09/09 01:32:40 | 000,000,010 | ---- | C] () -- C:\Program Files\.autoreg
[2007/08/30 17:11:22 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\GTW32N50.dll
[2007/08/30 17:11:06 | 000,001,668 | ---- | C] () -- C:\WINDOWS\System32\WLAN.INI
[2007/08/09 18:45:17 | 000,122,368 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/06/29 15:03:51 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\DigiPlatformSupport.dll
[2007/06/29 14:46:52 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2007/06/28 17:52:56 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\fusioncache.dat
[2006/12/05 17:00:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ernel32.dll
[2006/07/13 19:03:04 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/07/13 18:57:07 | 000,000,126 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2006/07/13 18:27:02 | 000,000,387 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2005/11/09 23:56:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/08/16 02:37:24 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2005/08/16 02:33:38 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/08/16 02:18:42 | 000,188,928 | ---- | C] () -- C:\WINDOWS\elodoxirakipe.dll
[2005/08/05 12:01:54 | 000,235,008 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[1997/06/13 18:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll

========== Custom Scans ==========


< %systemroot%\Fonts\*.com >
[2006/04/18 14:39:28 | 000,026,040 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont
[2006/06/29 13:53:56 | 000,026,489 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont
[2006/04/18 14:39:28 | 000,029,779 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont
[2006/06/29 13:58:52 | 000,030,808 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont

< %systemroot%\Fonts\*.dll >

< %systemroot%\Fonts\*.ini >
[2005/08/16 02:42:12 | 000,000,067 | -HS- | M] () -- C:\WINDOWS\Fonts\desktop.ini

< %systemroot%\Fonts\*.ini2 >

< %systemroot%\Fonts\*.exe >

< %systemroot%\system32\spool\prtprocs\w32x86\*.* >
[2003/04/30 12:43:32 | 000,078,336 | ---- | M] () -- C:\WINDOWS\system32\spool\prtprocs\w32x86\DLBKPP5C.DLL
[2008/07/06 05:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2008/07/06 03:50:03 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
[2002/05/14 15:50:34 | 000,011,264 | ---- | M] (BVRP Software) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\wfxprint2000.dll

< %systemroot%\REPAIR\*.bak1 >

< %systemroot%\REPAIR\*.ini >

< %systemroot%\system32\*.jpg >

< %systemroot%\*.jpg >

< %systemroot%\*.png >

< %systemroot%\*.scr >
[2008/06/02 18:59:32 | 000,019,949 | ---- | M] () -- C:\WINDOWS\dipem.scr
[2008/07/06 10:19:23 | 000,019,441 | ---- | M] () -- C:\WINDOWS\vovexyw.scr

< %systemroot%\*._sy >
[2008/07/03 08:09:17 | 000,018,355 | ---- | M] () -- C:\WINDOWS\tari._sy
[2008/06/13 00:06:19 | 000,014,304 | ---- | M] () -- C:\WINDOWS\wuba._sy
[2008/06/10 11:18:13 | 000,016,180 | ---- | M] () -- C:\WINDOWS\ynexavebe._sy

< %APPDATA%\Adobe\Update\*.* >

< %ALLUSERSPROFILE%\Favorites\*.* >

< %APPDATA%\Microsoft\*.* >

< %PROGRAMFILES%\*.* >
[2007/09/09 01:32:40 | 000,000,010 | ---- | M] () -- C:\Program Files\.autoreg

< %APPDATA%\Update\*.* >

< %PROGRAMFILES%\bak. /s >

< %systemroot%\system32\bak. /s >

< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >
[2005/08/16 02:43:10 | 000,000,294 | -HS- | M] () -- C:\Documents and Settings\All Users\Start Menu\desktop.ini

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %systemroot%\*.config >

< %systemroot%\system32\*.db >
[2008/06/23 14:51:08 | 000,017,820 | ---- | M] () -- C:\WINDOWS\system32\rama.db
[2008/06/02 18:59:32 | 000,014,214 | ---- | M] () -- C:\WINDOWS\system32\ubyrybid.db
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >
[2007/06/28 17:53:03 | 000,000,170 | -HS- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\Microsoft\Internet Explorer\Quick Launch\desktop.ini
[2005/08/16 02:50:28 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf

< %USERPROFILE%\Desktop\*.exe >
[2011/02/13 14:52:59 | 002,257,408 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Desktop\LeagueofLegends.exe
[2010/10/18 20:34:12 | 030,164,216 | ---- | M] (Lime Wire LLC) -- C:\Documents and Settings\ISAIAH\Desktop\LimeWireWin.exe

< %PROGRAMFILES%\Common Files\*.* >
[2008/06/02 18:59:32 | 000,018,062 | ---- | M] () -- C:\Program Files\Common Files\aticure.vbs
[2008/06/10 11:18:14 | 000,016,345 | ---- | M] () -- C:\Program Files\Common Files\awudigyby.dll
[2008/06/10 11:18:13 | 000,018,698 | ---- | M] () -- C:\Program Files\Common Files\budedawyv.dat
[2008/06/10 11:18:14 | 000,012,111 | ---- | M] () -- C:\Program Files\Common Files\edusysujez.inf
[2008/06/02 18:59:32 | 000,013,094 | ---- | M] () -- C:\Program Files\Common Files\mutetidid.sys
[2008/06/02 18:59:32 | 000,014,650 | ---- | M] () -- C:\Program Files\Common Files\qexykidu.sys
[2007/10/22 16:54:58 | 000,000,246 | ---- | M] () -- C:\Program Files\Common Files\qucav655
[2008/06/13 00:06:19 | 000,010,621 | ---- | M] () -- C:\Program Files\Common Files\rejupyvys.ban
[2008/06/10 11:18:13 | 000,014,898 | ---- | M] () -- C:\Program Files\Common Files\uvyvany.reg
[2008/06/02 18:59:32 | 000,016,029 | ---- | M] () -- C:\Program Files\Common Files\widar.bat
[2008/06/13 00:06:19 | 000,016,908 | ---- | M] () -- C:\Program Files\Common Files\ycawumyv._sy
[2008/06/13 00:06:19 | 000,013,664 | ---- | M] () -- C:\Program Files\Common Files\ygyjefon.bat
[2008/06/02 18:59:32 | 000,017,098 | ---- | M] () -- C:\Program Files\Common Files\ynyro.scr
[2008/06/13 00:06:19 | 000,014,240 | ---- | M] () -- C:\Program Files\Common Files\yzyver.dl

< %systemroot%\*.src >

< %systemroot%\install\*.* >

< %systemroot%\system32\DLL\*.* >

< %systemroot%\system32\HelpFiles\*.* >

< %systemroot%\system32\rundll\*.* >

< %systemroot%\winn32\*.* >

< %systemroot%\Java\*.* >
[2007/10/18 18:02:04 | 000,000,008 | ---- | M] () -- C:\WINDOWS\java\rabgiab.dat
[2007/10/18 18:02:07 | 000,000,008 | ---- | M] () -- C:\WINDOWS\java\rabgibb.dat
[2007/10/18 18:02:07 | 000,000,008 | ---- | M] () -- C:\WINDOWS\java\rabgicb.dat
[2007/10/18 18:02:07 | 000,000,046 | ---- | M] () -- C:\WINDOWS\java\rabgil.dat
[2007/10/15 18:46:44 | 000,000,008 | ---- | M] () -- C:\WINDOWS\java\rabgip1b.dat
[2007/10/18 18:02:07 | 000,001,150 | ---- | M] () -- C:\WINDOWS\java\rabgis.dat

< %systemroot%\system32\test\*.* >

< %systemroot%\system32\Rundll32\*.* >

< %systemroot%\AppPatch\Custom\*.* >

< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >

< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >

< %PROGRAMFILES%\Internet Explorer\*.tmp >

< %PROGRAMFILES%\Internet Explorer\*.dat >

< %USERPROFILE%\My Documents\*.exe >
[2008/12/16 21:40:29 | 007,518,240 | ---- | M] (Mozilla) -- C:\Documents and Settings\ISAIAH\My Documents\Firefox Setup 3.0.5.exe

< %USERPROFILE%\*.exe >

< %systemroot%\ADDINS\*.* >
[2004/08/10 03:00:00 | 000,000,791 | ---- | M] () -- C:\WINDOWS\addins\fxsext.ecf

< %systemroot%\assembly\*.bak2 >

< %systemroot%\Config\*.* >

< %systemroot%\REPAIR\*.bak2 >

< %systemroot%\SECURITY\Database\*.sdb /x >

< %systemroot%\SYSTEM\*.bak2 >

< %systemroot%\Web\*.bak2 >

< %systemroot%\Driver Cache\*.* >

< %PROGRAMFILES%\Mozilla Firefox\*.exe >
[2010/04/09 15:35:04 | 000,185,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\crashreporter.exe
[2010/04/09 15:35:04 | 000,307,672 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
[2010/04/09 15:35:06 | 000,242,136 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\updater.exe

< %ProgramFiles%\Microsoft Common\*.* >

< %ProgramFiles%\TinyProxy. >

< %USERPROFILE%\Favorites\*.url /x >
[2007/06/28 17:53:02 | 000,000,122 | -HS- | M] () -- C:\Documents and Settings\ISAIAH\Favorites\Desktop.ini

< %systemroot%\system32\*.bk >

< %systemroot%\*.te >

< %systemroot%\system32\system32\*.* >

< %ALLUSERSPROFILE%\*.dat /x >
[2007/12/29 21:37:06 | 000,000,418 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2005/07/25 21:39:44 | 001,267,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\comsvcs.dll
[2010/04/16 08:20:18 | 000,357,888 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dxtmsft.dll
[2010/04/16 08:20:18 | 000,205,312 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\dxtrans.dll
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\*.exe /lockedfiles >
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2005/08/16 02:27:08 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
[2005/08/16 02:27:08 | 000,659,456 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2005/08/16 02:27:08 | 000,876,544 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\system32\*.sys >
[2004/08/10 03:00:00 | 000,009,029 | ---- | M] () -- C:\WINDOWS\system32\ansi.sys
[2005/02/01 17:18:38 | 000,017,992 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\system32\bcm42rly.sys
[2004/08/10 03:00:00 | 000,027,097 | ---- | M] () -- C:\WINDOWS\system32\country.sys
[2004/06/09 08:29:56 | 000,006,977 | ---- | M] (Gteko Ltd.) -- C:\WINDOWS\system32\DDMI2.sys
[2005/03/13 14:54:00 | 000,006,656 | ---- | M] (GTek Technologies Ltd.) -- C:\WINDOWS\system32\DLPT2.sys
[2005/02/08 10:37:52 | 000,007,626 | ---- | M] (Gteko Ltd.) -- C:\WINDOWS\system32\GPCIEnum.sys
[2004/06/15 14:55:56 | 000,007,882 | ---- | M] (Gteko Ltd.) -- C:\WINDOWS\system32\GTKCMOS.sys
[2003/09/25 21:15:32 | 000,015,872 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\system32\GTNDIS5.sys
[2004/08/10 03:00:00 | 000,004,768 | ---- | M] () -- C:\WINDOWS\system32\himem.sys
[2004/08/10 03:00:00 | 000,042,809 | ---- | M] () -- C:\WINDOWS\system32\key01.sys
[2004/08/10 03:00:00 | 000,042,537 | ---- | M] () -- C:\WINDOWS\system32\keyboard.sys
[2005/01/01 02:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) -- C:\WINDOWS\system32\npptNT2.sys
[2004/08/10 03:00:00 | 000,027,866 | ---- | M] () -- C:\WINDOWS\system32\ntdos.sys
[2004/08/10 03:00:00 | 000,029,146 | ---- | M] () -- C:\WINDOWS\system32\ntdos404.sys
[2004/08/10 03:00:00 | 000,029,370 | ---- | M] () -- C:\WINDOWS\system32\ntdos411.sys
[2004/08/10 03:00:00 | 000,029,274 | ---- | M] () -- C:\WINDOWS\system32\ntdos412.sys
[2004/08/10 03:00:00 | 000,029,146 | ---- | M] () -- C:\WINDOWS\system32\ntdos804.sys
[2004/08/10 03:00:00 | 000,033,840 | ---- | M] () -- C:\WINDOWS\system32\ntio.sys
[2004/08/10 03:00:00 | 000,034,560 | ---- | M] () -- C:\WINDOWS\system32\ntio404.sys
[2004/08/10 03:00:00 | 000,035,648 | ---- | M] () -- C:\WINDOWS\system32\ntio411.sys
[2004/08/10 03:00:00 | 000,035,424 | ---- | M] () -- C:\WINDOWS\system32\ntio412.sys
[2004/08/10 03:00:00 | 000,034,560 | ---- | M] () -- C:\WINDOWS\system32\ntio804.sys
[2008/06/13 00:06:19 | 000,016,384 | ---- | M] () -- C:\WINDOWS\system32\olylopu.sys
[2005/10/17 18:50:06 | 000,245,376 | ---- | M] (Ralink Technology Inc.) -- C:\WINDOWS\system32\rt2500usb.sys
[2004/08/10 03:00:00 | 000,017,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\watchdog.sys
[2007/03/08 06:47:48 | 001,843,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32k(2).sys
[2007/03/08 06:47:48 | 001,843,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32k(3).sys
[2010/05/01 22:56:34 | 001,850,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32k.sys
[2004/01/07 16:04:00 | 000,339,488 | ---- | M] (Cisco-Linksys, LLC.) -- C:\WINDOWS\system32\WUSB20XP.sys
[2004/04/23 21:43:00 | 000,374,752 | ---- | M] (Cisco-Linksys, LLC.) -- C:\WINDOWS\system32\WUSBGXP.sys
[2 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.dll >
[2005/08/03 18:08:34 | 000,040,960 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2erec.dll

< %systemroot%\system32\drivers\*.ini >

< %systemroot%\system32\drivers\*.exe >

< %systemroot%\system32\Spool\prtprocs\w32x86\*.dll >
[2003/04/30 12:43:32 | 000,078,336 | ---- | M] () -- C:\WINDOWS\system32\spool\prtprocs\w32x86\DLBKPP5C.DLL
[2008/07/06 05:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
[2002/05/14 15:50:34 | 000,011,264 | ---- | M] (BVRP Software) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\wfxprint2000.dll

< %SYSTEMDRIVE%\*.* >
[2005/08/16 02:43:04 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2007/06/28 17:52:43 | 000,000,209 | -HS- | M] () -- C:\BoOT.INi
[2005/08/16 02:43:04 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2006/07/13 18:30:42 | 000,007,046 | RH-- | M] () -- C:\dell.sdr
[2011/02/13 15:49:42 | 2145,554,432 | -HS- | M] () -- C:\hiberfil.sys
[2007/06/29 15:05:45 | 000,004,128 | ---- | M] () -- C:\INFCACHE.1
[2005/08/16 02:43:04 | 000,000,000 | -H-- | M] () -- C:\IO.SYS
[2006/07/13 18:51:14 | 000,000,838 | -H-- | M] () -- C:\IPH.PH
[2005/08/16 02:43:04 | 000,000,000 | -H-- | M] () -- C:\MSDOS.SYS
[2004/08/10 03:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2004/08/10 03:00:00 | 000,250,032 | RHS- | M] () -- C:\ntldr
[2011/02/13 15:49:42 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2007/06/29 14:43:40 | 000,104,125 | ---- | M] () -- C:\pc-decrap-reg.txt
[2007/06/29 14:49:23 | 000,068,038 | ---- | M] () -- C:\pc-decrapifier-msi.log
[2007/06/29 14:52:12 | 000,000,858 | ---- | M] () -- C:\pc-decrapifier.log
[2009/05/18 19:05:42 | 000,000,168 | ---- | M] () -- C:\setupfax.log
[2006/07/13 18:51:20 | 000,000,087 | ---- | M] () -- C:\SystemInfo.ini
[2007/09/04 20:47:08 | 000,020,480 | ---- | M] () -- C:\test.pcm
[2010/07/19 15:35:05 | 000,000,150 | ---- | M] () -- C:\zrpt.xml

< %PROGRAMFILES%\*. >
[2009/06/10 13:01:43 | 000,000,000 | ---D | M] -- C:\Program Files\ABBYY FineReader 5.0 Sprint
[2009/06/10 13:01:40 | 000,000,000 | ---D | M] -- C:\Program Files\ABBYY FineReader 6.0
[2009/05/17 20:07:07 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2010/01/06 18:18:12 | 000,000,000 | ---D | M] -- C:\Program Files\AGEIA Technologies
[2008/12/25 09:13:39 | 000,000,000 | ---D | M] -- C:\Program Files\ArcSoft
[2010/10/22 01:02:10 | 000,000,000 | ---D | M] -- C:\Program Files\Ask.com
[2006/07/13 18:48:10 | 000,000,000 | ---D | M] -- C:\Program Files\ATI Technologies
[2006/07/13 18:57:28 | 000,000,000 | ---D | M] -- C:\Program Files\BAE
[2007/07/29 13:21:30 | 000,000,000 | ---D | M] -- C:\Program Files\BFD
[2007/07/29 13:19:27 | 000,000,000 | ---D | M] -- C:\Program Files\BFDXFL
[2010/08/13 17:48:14 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2005/08/16 02:38:36 | 000,000,000 | ---D | M] -- C:\Program Files\ComPlus Applications
[2006/07/13 18:32:42 | 000,000,000 | ---D | M] -- C:\Program Files\CONEXANT
[2006/07/13 18:54:43 | 000,000,000 | ---D | M] -- C:\Program Files\Corel Corporation
[2007/06/29 14:44:37 | 000,000,000 | ---D | M] -- C:\Program Files\Dell
[2009/05/18 19:04:11 | 000,000,000 | ---D | M] -- C:\Program Files\Dell A920
[2009/06/10 13:01:27 | 000,000,000 | ---D | M] -- C:\Program Files\Dell AIO Printer A920
[2006/07/13 18:52:07 | 000,000,000 | ---D | M] -- C:\Program Files\Dell Support
[2010/04/14 16:17:22 | 000,000,000 | ---D | M] -- C:\Program Files\Diablo II
[2007/06/29 15:27:34 | 000,000,000 | ---D | M] -- C:\Program Files\DIFX
[2008/02/04 08:16:33 | 000,000,000 | ---D | M] -- C:\Program Files\Digidesign
[2006/07/13 18:48:50 | 000,000,000 | ---D | M] -- C:\Program Files\Digital Line Detect
[2005/08/16 18:54:50 | 000,000,000 | ---D | M] -- C:\Program Files\DIGStream
[2009/12/16 23:50:29 | 000,000,000 | ---D | M] -- C:\Program Files\DivX
[2010/05/19 18:18:23 | 000,000,000 | ---D | M] -- C:\Program Files\DOSBox-0.72
[2008/06/09 20:09:04 | 000,000,000 | ---D | M] -- C:\Program Files\EndItAll
[2005/08/16 18:51:50 | 000,000,000 | ---D | M] -- C:\Program Files\EnglishOtto
[2005/08/16 18:54:50 | 000,000,000 | ---D | M] -- C:\Program Files\ESPNMotion
[2009/06/10 13:01:39 | 000,000,000 | ---D | M] -- C:\Program Files\FaxTools
[2009/12/08 21:33:56 | 000,000,000 | ---D | M] -- C:\Program Files\Firefly Studios
[2007/07/29 13:20:33 | 000,000,000 | ---D | M] -- C:\Program Files\FXpansion
[2005/08/16 18:54:44 | 000,000,000 | ---D | M] -- C:\Program Files\GemMaster
[2010/05/19 18:26:08 | 000,000,000 | ---D | M] -- C:\Program Files\GOG.com
[2008/02/16 19:29:29 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2010/02/15 13:35:26 | 000,000,000 | ---D | M] -- C:\Program Files\Guitar Pro 5
[2011/02/13 15:29:59 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2006/07/13 18:48:33 | 000,000,000 | ---D | M] -- C:\Program Files\Intel
[2006/07/13 18:48:29 | 000,000,000 | ---D | M] -- C:\Program Files\InterActual
[2007/06/29 15:06:37 | 000,000,000 | ---D | M] -- C:\Program Files\InterLok
[2010/06/28 00:12:26 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2009/03/09 16:51:27 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2006/07/13 18:51:12 | 000,000,000 | ---D | M] -- C:\Program Files\Learn2.com
[2010/10/18 20:36:02 | 000,000,000 | ---D | M] -- C:\Program Files\LimeWire
[2008/06/03 18:43:00 | 000,000,000 | ---D | M] -- C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor
[2010/08/16 10:55:08 | 000,000,000 | ---D | M] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/05/08 15:08:11 | 000,000,000 | ---D | M] -- C:\Program Files\McAfee
[2010/05/08 15:08:28 | 000,000,000 | ---D | M] -- C:\Program Files\McAfee.com
[2008/08/13 01:18:22 | 000,000,000 | ---D | M] -- C:\Program Files\Messenger
[2009/04/26 16:15:16 | 000,000,000 | ---D | M] -- C:\Program Files\Microids
[2005/08/16 02:43:46 | 000,000,000 | ---D | M] -- C:\Program Files\microsoft frontpage
[2010/03/12 22:27:21 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2006/07/13 18:48:44 | 000,000,000 | ---D | M] -- C:\Program Files\Modem Helper
[2010/03/13 01:03:04 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker
[2011/02/13 15:52:59 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2009/10/24 00:01:47 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2007/08/08 10:46:43 | 000,000,000 | ---D | M] -- C:\Program Files\MSN
[2005/08/16 02:37:30 | 000,000,000 | ---D | M] -- C:\Program Files\MSN Gaming Zone
[2008/12/26 18:55:34 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
[2007/08/31 19:54:41 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 6.0
[2007/06/29 14:48:03 | 000,000,000 | ---D | M] -- C:\Program Files\MUSICMATCH
[2007/07/08 12:08:02 | 000,000,000 | ---D | M] -- C:\Program Files\Native Instruments
[2005/08/16 02:40:14 | 000,000,000 | ---D | M] -- C:\Program Files\NetMeeting
[2006/07/13 18:48:56 | 000,000,000 | ---D | M] -- C:\Program Files\NetWaiting
[2008/12/25 09:09:28 | 000,000,000 | ---D | M] -- C:\Program Files\Nikon
[2009/06/10 13:01:21 | 000,000,000 | ---D | M] -- C:\Program Files\NOS
[2005/08/16 02:38:24 | 000,000,000 | ---D | M] -- C:\Program Files\Online Services
[2010/05/15 00:00:40 | 000,000,000 | ---D | M] -- C:\Program Files\Outlook Express
[2011/02/13 14:53:39 | 000,000,000 | ---D | M] -- C:\Program Files\Pando Networks
[2008/06/12 23:55:03 | 000,000,000 | ---D | M] -- C:\Program Files\PCPitstop
[2008/02/29 19:15:40 | 000,000,000 | ---D | M] -- C:\Program Files\Picasa2
[2011/02/03 22:38:19 | 000,000,000 | ---D | M] -- C:\Program Files\PowerISO
[2007/06/30 16:28:19 | 000,000,000 | ---D | M] -- C:\Program Files\Propellerhead
[2008/12/25 09:07:47 | 000,000,000 | ---D | M] -- C:\Program Files\QuickTime
[2006/07/13 18:50:56 | 000,000,000 | ---D | M] -- C:\Program Files\Real
[2009/10/24 00:01:39 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2005/08/16 18:58:50 | 000,000,000 | ---D | M] -- C:\Program Files\RGB
[2007/06/29 14:49:14 | 000,000,000 | ---D | M] -- C:\Program Files\Roxio
[2006/07/13 18:57:28 | 000,000,000 | ---D | M] -- C:\Program Files\SearchAssist
[2006/07/13 18:45:39 | 000,000,000 | ---D | M] -- C:\Program Files\Sigmatel
[2010/04/14 23:46:55 | 000,000,000 | ---D | M] -- C:\Program Files\softnyx
[2006/07/13 18:57:26 | 000,000,000 | ---D | M] -- C:\Program Files\Sonic
[2005/08/16 02:50:18 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2010/07/20 13:44:34 | 000,000,000 | ---D | M] -- C:\Program Files\uTorrent
[2006/07/13 18:51:11 | 000,000,000 | ---D | M] -- C:\Program Files\Viewpoint
[2007/07/29 13:20:36 | 000,000,000 | ---D | M] -- C:\Program Files\vstPlugins
[2007/06/29 16:54:19 | 000,000,000 | ---D | M] -- C:\Program Files\Waves
[2006/07/13 18:52:16 | 000,000,000 | ---D | M] -- C:\Program Files\WebCyberCoach
[2008/02/16 19:28:53 | 000,000,000 | ---D | M] -- C:\Program Files\Western Digital
[2008/02/16 19:21:56 | 000,000,000 | ---D | M] -- C:\Program Files\Western Digital Technologies
[2006/07/13 18:52:25 | 000,000,000 | ---D | M] -- C:\Program Files\WildTangent
[2007/12/29 21:36:52 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Connect 2
[2008/07/13 17:25:21 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2005/08/16 02:37:22 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2005/08/16 02:37:56 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Plus
[2005/08/16 02:40:46 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsUpdate
[2005/08/16 02:43:46 | 000,000,000 | ---D | M] -- C:\Program Files\xerox

< %appdata%\*.* >
[2008/06/02 18:59:32 | 000,010,463 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\aponaqyno._sy
[2005/08/16 02:33:26 | 000,000,062 | -HS- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\desktop.ini
[2008/12/25 09:08:37 | 000,000,268 | RH-- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\Flowers
[2008/08/31 11:28:05 | 000,000,198 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\G-Force Prefs (WindowsMediaPlayer).txt
[2008/06/02 18:59:32 | 000,019,404 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\qanekufod.com
[2008/06/10 11:18:13 | 000,013,654 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\qurolesa.bat
[2008/06/10 11:18:13 | 000,017,878 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\ratuda._sy
[2008/06/10 11:18:13 | 000,014,210 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\ujedoka.sys
[2008/06/13 00:06:19 | 000,010,012 | ---- | M] () -- C:\Documents and Settings\ISAIAH\Application Data\yrig.db


< MD5 for: AGP440.SYS >
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\i386\sp2.cab:AGP440.sys
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/04/13 11:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\agp440.sys
[2004/08/03 21:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\system32\drivers\AGP440.SYS

< MD5 for: ATAPI.SYS >
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\i386\sp2.cab:atapi.sys
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/04/13 11:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\atapi.sys
[2004/08/03 20:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2004/08/03 20:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004/08/03 20:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0010\DriverFiles\i386\atapi.sys

< MD5 for: DISK.SYS >
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\i386\sp2.cab:disk.sys
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:disk.sys
[2004/08/10 03:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=00CA44E4534865F8A3B64F7C0984BFF0 -- C:\WINDOWS\system32\drivers\disk.sys
[2008/04/13 11:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\disk.sys

< MD5 for: EVENTLOG.DLL >
[2008/04/13 17:11:53 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\eventlog.dll
[2004/08/10 03:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: IASTOR.SYS >
[2005/06/17 03:33:40 | 000,872,064 | ---- | M] (Intel Corporation) MD5=9A65E42664D1534B68512CAAD0EFE963 -- C:\drivers\storage\sata\onboard\iastor.sys
[2005/06/17 03:33:40 | 000,872,064 | ---- | M] (Intel Corporation) MD5=9A65E42664D1534B68512CAAD0EFE963 -- C:\WINDOWS\system32\drivers\iaStor.sys

< MD5 for: NETLOGON.DLL >
[2008/04/13 17:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\netlogon.dll
[2009/02/06 11:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\$NtUninstallKB975467$\netlogon.dll
[2009/02/06 11:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2009/02/06 11:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\system32\netlogon.dll
[2004/08/10 03:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\$NtUninstallKB968389$\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004/08/10 03:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\system32\scecli.dll
[2008/04/13 17:12:05 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\scecli.dll

< MD5 for: USBSTOR.SYS >
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\i386\sp2.cab:usbstor.sys
[2004/08/10 03:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:usbstor.sys
[2004/08/03 22:08:48 | 000,026,496 | ---- | M] (Microsoft Corporation) MD5=6CD7B22193718F1D17A47A1CD6D37E75 -- C:\WINDOWS\system32\dllcache\usbstor.sys
[2004/08/03 22:08:48 | 000,026,496 | ---- | M] (Microsoft Corporation) MD5=6CD7B22193718F1D17A47A1CD6D37E75 -- C:\WINDOWS\system32\drivers\USBSTOR.SYS
[2008/04/13 11:45:38 | 000,026,368 | ---- | M] (Microsoft Corporation) MD5=A32426D9B14A089EAA1D922E0C5801A9 -- C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\usbstor.sys

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-08-17 03:11:47

========== Files - Unicode (All) ==========
[2007/12/30 21:21:59 | 000,000,000 | ---D | M](C:\WINDOWS\System32\?dobe) -- C:\WINDOWS\System32\Αdobe
[2007/09/12 18:28:21 | 000,000,000 | ---D | M](C:\WINDOWS\??curity) -- C:\WINDOWS\ѕеcurity
[2007/09/09 01:21:50 | 000,000,000 | ---D | M](C:\WINDOWS\?racle) -- C:\WINDOWS\Оracle
[2007/09/09 01:21:50 | 000,000,000 | ---D | C](C:\WINDOWS\?racle) -- C:\WINDOWS\Оracle
[2007/09/02 11:12:36 | 000,000,000 | ---D | C](C:\WINDOWS\??curity) -- C:\WINDOWS\ѕеcurity
[2007/09/02 11:11:16 | 000,000,000 | ---D | C](C:\WINDOWS\System32\?dobe) -- C:\WINDOWS\System32\Αdobe

========== Alternate Data Streams ==========

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\win.ini:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\tsiwinfile.dat:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\wow32.dll:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\wbcache.deu:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\unicode.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\tssoft32.acm:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\stdole2.tlb:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\sorttbls.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\sortkey.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\sl_anet.acm:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\qtutv.ini2:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\OEMLOGO.BMP:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\oembios.sig:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\oembios.dat:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\oembios.bin:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ntimage.gif:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\MSINET.oca:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msgsm32.acm:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msg723.acm:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msg711.acm:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\msadp32.acm:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\locale.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\l3codecp.acm:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\l_intl.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\imaadp32.acm:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\geo.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\FNTCACHE.DAT:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\tdpipe.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\tdi.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\pcmcia.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\parvdm.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\hidparse.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\hidclass.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\fs_rec.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\dxgthk.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\dxg.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\dxapi.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\bridge.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\bcm42rly.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\atmuni.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\atmlane.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\atmepvc.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\ativvpxx.vp:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\ativckxx.vp:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\ativcaxx.vp:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\ativcaxx.cpa:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\amdk6.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\system32\DRIVERS\amdagp.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\system32\DRIVERS\alim1541.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\system32\DRIVERS\agpCPQ.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\system32\DRIVERS\agp440.sys:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\drivers\1028_Dell_XPS_DXPO51.mrk:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\ctype.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\comsvcs.dll:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\c_950.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\c_949.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\c_936.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\c_932.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\c_28592.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\c_28591.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\c_1253.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\c_1251.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\c_1250.nls:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\atiicdxx.dat:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\alrsvc.dll:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\12520850.cpx:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\System32\12520437.cpx:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\system.ini:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\spupdsvc.log:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\nsreg.dat:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\KB941569.log:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\KB939683.log:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\KB936782.log:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\KB905589.log:KAVICHS

@Alternate Data Stream - 68 bytes -> C:\WINDOWS\Java\rabgip1b.dat:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\Java\rabgil.dat:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\Java\rabgicb.dat:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\Java\rabgiab.dat:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\ehd_wmc.log:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\ehd_msi.log:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\DvcSetup.log:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\DvcConn.log:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\Dell.bmp:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\WINDOWS\_default.pif:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\ISAIAH\My Documents\PubWhiteList.pwl:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\ISAIAH\My Documents\desktop.ini:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\ISAIAH\Local Settings\Application Data\fusioncache.dat:KAVICHS
@Alternate Data Stream - 68 bytes -> C:\Documents and Settings\All Users\Documents\desktop.ini:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\Zapotec.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\xpsp1hfm.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\Wudf01000Inst.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\WMSysPr9.prx:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\wmsetup10.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\wmp11.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\WMFDist11.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\winnt256.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\winnt.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\WgaNotify.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\vmmreg32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\vbaddin.ini:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\vb.ini:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\updspapi.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\twain_32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\twain.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\tsoc.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\tabletoc.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\winoldap.mod:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wdl.trm:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wbdbase.sve:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wbdbase.nld:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wbdbase.ita:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wbdbase.fra:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wbdbase.esn:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wbdbase.deu:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wbcache.sve:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wbcache.nld:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wbcache.ita:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wbcache.fra:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\wbcache.esn:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\View Channels.scf:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\v7vga.rom:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\tslabels.h:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\termcap:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\sysprtj.sep:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\sysprint.sep:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\subrange.uce:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\sqlsrv32.rll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\sqlsodbc.chm:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\shiftjis.uce:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\shdocvw.bak:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\setup.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\secupd.sig:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\secupd.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\sclgntfy.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\rsvpcnts.h:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\results.txt:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\rasctrnm.h:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\pscript.sep:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\pschdcnt.h:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\perfwci.h:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\perfi009.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\perffilt.h:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\perfd009.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\perfci.h:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\pcl.sep:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\OEMBKGN1.BMP:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\noise.tha:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\noise.sve:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\noise.nld:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\noise.ita:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\noise.fra:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\noise.esn:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\noise.eng:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\noise.deu:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\noise.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\noise.cht:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\noise.chs:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mypixdx.chm:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\msvcirt.dll.bak:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\msdtcprf.h:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mqprfsym.h:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mlang.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\mib.bin:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\l_except.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\korean.uce:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\kanji_2.uce:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\kanji_1.uce:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\jupdate-1.4.2_03-b02.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\instcat.sql:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ideograf.uce:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\graphics.pro:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\gb2312.uce:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\fxscount.h:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ExpansionHD_Firmware.bin:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\eula.txt:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\esentprf.hxx:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\emptyregdb.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\ega.cpi:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dssec.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\ws2ifsl.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\vdmindvd.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\usbintel.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\usbcamd2.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\usbcamd.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\usb8023.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\tunmp.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\tsbvcap.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\tosdvd.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\tape.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\sonydcam.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\smclib.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\sffp_sd.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\sffdisk.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\sdbus.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\scsiport.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\rootmdm.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\rndismp.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\riodrv.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\rio8drv.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\rawwan.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\processr.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\p3.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\oprghdlr.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\nwlnkspx.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\nwlnknb.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\nwlnkipx.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\nmnt.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\nikedrv.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\mf.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\mcd.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\iqvw32.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\iLokDrvr.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\Hdaudio.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\gmreadme.txt:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\gm.dls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\fsvga.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\enum1394.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\diskdump.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\dgfwboot.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\crusoe.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\cpqdap01.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\cinemst2.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\drivers\amdk7.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\zonelibm.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\zoneclim.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\znetm.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\zeeverm.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\zcorem.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\zclientm.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\xpsp1res.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\xpob2res.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\xmlprovi.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\xenroll.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\xcopy.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\xactsrv.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wupdmgr.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wuaueng1.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wuauclt1.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wstrendr.ax:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wstpager.ax:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wstdecod.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wsnmp32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wshrm.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wshom.ocx:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wshnetbs.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wshisn.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wship6.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wshcon.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wshbth.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wshatm.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wsecedit.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wscui.cpl:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wscript.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wscntfy.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ws2ifsl.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\write.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wpnpinst.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wpabaln.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wowfaxui.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wowfax.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wowexec.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmvds32.ax:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmvdmoe2.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmvdmod.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmv8ds32.ax:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmstream.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmsdmoe2.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmsdmoe.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmsdmod.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmpui.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmpcore.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmpcd.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmpband.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmpasf.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmp.ocx:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmm2res2.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmm2fxb.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmm2fxa.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmm2filt.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmm2ext.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmm2eres.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmm2ae.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmitimep.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmiscmgr.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmipsess.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmiprov.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmiprop.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmipjobj.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmipiprt.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmipicmp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmipdskq.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmimsg.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmilib.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmidx.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmidcprv.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmicookr.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmic.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmiaprpl.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmiapres.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmiadap.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmi2xml.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmerror.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmerrenu.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wmdmlog.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wisc10.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winver.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winstrm.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winsrv.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winspool.drv:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winshfhc.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winntbbu.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winnls.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winmsd.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winmine.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winmgmtr.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winmgmt.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winhstb.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winhlp32.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winhelp.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winfax.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\winchat.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wifeman.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wiavusd.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wiavideo.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wiasf.ax:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wiaservc.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wiadss.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wiadefui.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wiaacmgr.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\WgaTray.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\WgaLogon.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wfwnet.drv:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wextract.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\webvw.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\webhits.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wdmaud.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wbemupgd.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wbemtest.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wbemperf.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wbemdisp.tlb:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wbemdisp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wbemcntl.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wbemads.tlb:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wbemads.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wb32.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wabmig.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wabimp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wab32res.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wab32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\wab.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\w32topl.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\w32tm.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vwipxspx.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vwipxspx.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vssadmin.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vss_ps.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vmmreg32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vjoy.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\viewprov.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vgx.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vga64k.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vga256.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vga.drv:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\verifier.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\verifier.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ver.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vdmredir.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vdmindvd.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vcdex.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vbisurf.ax:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vbicodec.ax:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\vbajet32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrvpa.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrvoica.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrv80a.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrv42a.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrsvpia.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrshuta.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrsdpia.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrrtosa.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrprbda.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrmlnka.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrlbva.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrfaxa.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrdtea.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrdpa.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrcoina.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usrcntra.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usp10.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\user32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\user.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usbui.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usbuhci.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usbstor.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usbport.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usbintel.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usbhub.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usbcamd2.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usbcamd.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\usb8023.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ureg.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\upnpui.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\upnphost.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\upnpcont.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\uploadm.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\updprov.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\update.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\untfs.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\unsecapp.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\unlodctr.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\unicode.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\uniansi.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ulib.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ufat.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\udhisapi.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\typeperf.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\twunk_32.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\twunk_16.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\twain_32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\twain.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tunmp.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tsshutdn.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tskill.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tshoot.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tsdiscon.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tsddd.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tsd32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tscupgrd.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tscon.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tscfgwmi.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tsbvcap.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tsappcmp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\trnsprov.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\trialoc.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\traffic.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tracert6.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tracert.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tracerpt.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tourW.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tourstrt.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tosdvd.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tmplprov.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tlntsvrp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tlntadmn.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\timer.drv:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\timedate.cpl:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tftp.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\telephon.cpl:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tcpsvcs.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tcpmonui.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tcpmib.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tcmsetup.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\taskman.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tasklist.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\taskkill.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tapiui.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tapiperf.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tapi.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\tape.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\systray.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\system.drv:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sysocmgr.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sysmon.ocx:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sysmod_a.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sysmod.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\syskey.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sysinv.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sysinfo.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sysedit.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sysdm.cpl:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sysaudio.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\synceng.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\syncapp.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sxs.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\swprv.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\swmidi.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\svcpack.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\subst.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\streamci.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\stream.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\storprop.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\stimon.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sti_ci.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\stdprov.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\stdole32.tlb:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\stdole.tlb:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\stclient.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sstub.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\srrstr.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\srgb.icm:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\srframe.mmf:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\srdiag.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\srchui.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\srchctls.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sqlxmlx.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sqlunirl.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sqlse20.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sqlqp20.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sqldb20.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spxcoins.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spttseng.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sptip.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprio800.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprio600.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprestrt.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0C0A.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0816.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0804.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0424.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb041f.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb041D.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb041b.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0419.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0416.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0415.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0414.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0413.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0412.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0411.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0410.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb040e.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb040D.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb040C.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb040b.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0408.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0407.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0406.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0405.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0404.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sprb0401.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0C0A.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0816.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0804.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0427.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0426.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0425.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0424.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra041f.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra041e.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra041D.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra041b.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra041a.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0419.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0418.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0416.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0415.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0414.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0413.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0412.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0411.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0410.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra040e.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra040D.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra040C.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra040b.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0408.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0407.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0406.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0405.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0404.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0402.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spra0401.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spnpinst.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spnike.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\splitter.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spiisupd.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spider.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spgrmr.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spcplui.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\spcommon.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sound.drv:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sorttbls.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sortkey.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sort.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sonydcam.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sol.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\softpub.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\softkbd.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\snmpsnap.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\snmpapi.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sniffpol.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sndvol32.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sndrec32.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\smtpcons.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\smlogcfg.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\smclib.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\smbinst.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\slbrccsp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\slbiop.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\slbcsp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\skeys.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\skdll.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sisbkup.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\simpdata.tlb:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sigverif.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sigtab.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\shvlzm.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\shvl.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\shutdown.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\shsvcs.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\shrpubw.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\shell.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\share.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\shadow.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sfmapi.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sffp_sd.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sffdisk.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sfc.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\setupdll.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\setup_wm.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\setup.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sethc.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\servdeps.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\serialui.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\senscfg.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sendcmsg.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\secupd.sig:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\secupd.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\secedit.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sdpblb.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sdhcinst.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sdbus.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sdbinst.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sctasks.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\scsiport.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\scrrun.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\scrobj.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\scriptpw.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\script_a.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\script.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\scredir.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\scrcons.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sccsccp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sccbase.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\scardssp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\scarddlg.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sbeio.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sbe.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\savedump.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sapisvr.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sapi.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sapi.cpl:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sam.spd:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\sam.sdf:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\safrslv.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\safrdm.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\safrcdlg.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rwinsta.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rvsezm.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rvseres.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rvse.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\runas.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rtm.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rtipxmib.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rtcshare.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rsvpperf.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rsvpmsg.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rstrui.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rsopprov.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rsnotify.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rsmui.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rsmsink.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rsmps.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rsm.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rsh.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rsfsaps.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rrcm.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rpcns4.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\routetab.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\routemon.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\route.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rootmdm.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rnr20.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rndismp.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\riodrv.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rio8drv.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\riched20.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rexec.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\reset.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\replace.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rend.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\remotesp.tsp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\relog.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\regwizc.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\regwiz.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\regini.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\regedt32.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\reg.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\redir.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\recover.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rdshost.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rdsaddin.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rdpwsx.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rdpsnd.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rdpcfgex.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rdchost.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rdbss.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rcp.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rcimlby.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rawwan.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rasser.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rassapi.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rasrad.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rasphone.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rasmxs.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rasmontr.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rasmans.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rasdial.exe:KAVICHS

@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rasctrs.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rasautou.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\rasadhlp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\racpldlg.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\r1033tts.lxa:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\qwinsta.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\qprocess.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\qosname.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\qedwipes.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\qedit.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\qdvd.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\qdv.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\qcap.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\qappsrv.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pubprn.vbs:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\psnppagn.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\psisrndr.ax:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\psisdecd.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pschdprf.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\proxycfg.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\provthrd.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\proquota.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\processr.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\prnqctl.vbs:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\prnport.vbs:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\prnmngr.vbs:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\prnjobs.vbs:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\prndrvr.vbs:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\prncnfg.vbs:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\print.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\prflbmsg.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\powercfg.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\powercfg.cpl:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\polstore.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\policman.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pnrpnsp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\plustab.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ping6.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ping.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pinball.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pifmgr.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pid.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\perfts.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\perfproc.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\perfnw.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\perfnet.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\perfmon.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\perfdisk.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\perfctrs.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pentnt.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pciidex.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pciide.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pci.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pchshell.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pautoenr.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pathping.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\paqsp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\panmap.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\pagefile.vbs:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\packager.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\p3.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\p2psvc.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\p2pnetsh.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\p2pgraph.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\p2pgasvc.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\p2p.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\osuninst.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\oprghdlr.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\opnfiles.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\opengl32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\oobebaln.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\olesvr.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\oleprn.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\oledlg.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\oledb32r.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\olecli.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\oleaccrc.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\offfilt.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\oemiglib.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\oemig50.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\oembios.sig:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\oembios.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\oeimport.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odtext32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odpdx32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odfox32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odexl32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\oddbse32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbctrac.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbcp32r.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbcjt32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbcji32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbccu32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbccr32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbccp32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbccp32.cpl:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbcconf.rsp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbcconf.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbcconf.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbcad32.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbc32gt.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\odbc16gt.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0C0A.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0816.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0804.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0424.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb041f.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb041D.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb041b.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0419.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0416.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0415.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0414.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0413.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0412.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0411.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0410.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb040e.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb040D.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb040C.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb040b.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0408.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0407.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0406.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0405.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0404.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\obrb0401.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\objsel.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nwwks.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nwscript.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nwrdr.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nwprovau.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nwlnkspx.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nwlnknb.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nwlnkipx.sys:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nwevent.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nwcfg.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nwapi32.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nwapi16.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nw16.exe:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nv4_disp.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\nusrmgr.cpl:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ntvdmd.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ntsdexts.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ntprint.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\mlang.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ltts1033.lxa:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\locale.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\l_intl.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\gm.dls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\geo.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ehcir.ird:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\ctype.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_950.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_949.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_936.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_932.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_875.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_874.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_869.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_866.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_865.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_863.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_861.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_860.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_857.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_855.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_852.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_850.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_775.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_737.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_500.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_437.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_28605.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_28603.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_28599.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_28598.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_28597.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_28595.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_28594.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_28593.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_28592.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_28591.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_21866.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_20905.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_20866.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_20261.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_20127.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_1258.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_1257.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_1256.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_1255.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_1254.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_1253.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_1252.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_1251.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_1250.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_1026.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_10082.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_10081.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_10079.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_10029.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_10017.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_10010.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_10007.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_10006.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_10000.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\c_037.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\dllcache\apps.chm:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\DELLWALL.BMP:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\Dcache.bin:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\config\system.sav:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\config\software.sav:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\config\default.sav:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\CONFIG.TMP:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\CONFIG.NT:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\cmos.ram:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\cmdlib.wsc:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\cliconfg.rll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\cliconf.chm:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\catsrvut.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\catsrv.dll:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_875.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_874.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_869.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_866.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_865.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_863.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_861.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_860.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_857.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_855.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_852.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_850.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_775.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_737.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_500.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_437.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_28605.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_28603.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_28599.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_28598.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\C_28597.NLS:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\C_28595.NLS:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\C_28594.NLS:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_28593.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_21866.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_20905.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_20866.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_20261.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_20127.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_1258.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_1257.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_1256.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_1255.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_1254.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_1252.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_1026.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_10082.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_10081.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_10079.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_10029.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_10017.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_10010.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_10007.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_10006.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_10000.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\c_037.nls:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\bopomofo.uce:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\bios4.rom:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\bios1.rom:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System32\atifglpf.xml:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\MMSYSTEM.DLL:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\MCIWAVE.DRV:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\MCISEQ.DRV:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\MCIAVI.DRV:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\LZEXPAND.DLL:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\KEYBOARD.DRV:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\dcmpfs.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\dcmpfp1b.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\dcmpfl.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\dcmpfda.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\dcmpfcb.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\dcmpfbb.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\dcmpfab.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\COMMDLG.DLL:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\AVIFILE.DLL:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\System\AVICAP.DLL:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\Soap Bubbles.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\smscfg.ini:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\setuplog.del:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\setupapi.del:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\setupact.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\setupact.del:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\sessmgr.setup.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\Santa Fe Stucco.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\River Sumida.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\Rhododendron.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\regopt.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\REGLOCS.OLD:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\Prairie Wind.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\plusoc.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\OEWABLog.txt:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\ODBCINST.INI:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\ocmsn.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\ocgen.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\ntdtcsetup.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\netfxocm.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\msxml6-KB933579-enu-x86.LOG:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\msmqinst.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\msgsocm.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\msdfmap.ini:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\MSCompPackV1.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\mp10oem.txt:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\mozver.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\medblker.Log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\MCSetup_UI.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\MCSetup.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB946627.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB946026.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB945553.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB944653.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB944533.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB943485.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB943460.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB943055.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB942840.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB942763.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB942615.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB941644.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB941568.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB941202.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB939653.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB938829.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB938828.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB938127.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB937894.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB937143.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB936357.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB936021.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB935840.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB935839.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB933729.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB933566.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB933360.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB932168.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB931836.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB931784.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB931261.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB930916.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB930494.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB930178.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB929969.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB929399.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB929123.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB928843.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB928255.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB927891.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB927802.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB927779.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB926436.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB926255.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB926251.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB926239.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB925902.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB925766.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB925398.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB924667.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB924496.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB924270.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB924191.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB923980.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB923414.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB923191.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB922819.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB922582.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB921503.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB920872.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB920685.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB920683.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB920670.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB920213.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB919007.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB918439.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB918118.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB917953.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB917734.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB917344.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB916595.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB914389.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB914388.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB913800.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB913580.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB912945.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB912919.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB912812.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB912067.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB912024.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB911927.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB911562.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB911280.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB910437.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB910393.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB908673.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB908531.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB908519.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB908246.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB906569.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB905749.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB905414.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB904706.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB903157.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB902841.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB902400.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB901214.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB901017.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB900725.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB900485.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB900325.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB899591.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB899588.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB899587.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB899510.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB899337.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB898461.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB896428.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB896424.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB896423.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB896422.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB896358.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB896256.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB895961.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB894391.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB893803v2.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB893756.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB891781.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB891593.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB890927.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB890859.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB890046.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB889673.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB888795.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB888302.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB888113.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB887998.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB887472.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB886185.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB885836.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB885835.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB885250.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB873339.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\KB835221.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\Java\rabgis.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\Java\rabgibb.dat:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\iis6.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\Greenstone.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\Gone Fishing.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\FeatherTexture.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\FaxSetup.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\explorer.scf:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\EmeraldQFE2.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\ehOCGen.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\DtcInstall.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\DJBDRV.LOG:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\comsetup.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\COM+.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\Coffee Bean.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\cmsetacl.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\clock.avi:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\WINDOWS\Blue Lace 16.bmp:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\test.pcm:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\Program Files\Common Files\qucav655:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\Program Files\.autoreg:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\pc-decrap-reg.txt:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\pc-decrapifier-msi.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\pc-decrapifier.log:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\INFCACHE.1:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\Documents and Settings\ISAIAH\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\Documents and Settings\All Users\NTUSER.DAT:KAVICHS
@Alternate Data Stream - 36 bytes -> C:\Documents and Settings\All Users\NTUSER.DAT.LOG:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\wmsetup.log:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\WindowsUpdate.log:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\wiaservc.log:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\xpsp2res.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\wzcsvc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\wzcsapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\wuauserv.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\wtsapi32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\wsock32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\wshtcpip.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\wscsvc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ws2help.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ws2_32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\wpa.dbl:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\wmi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\wlnotify.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\wldap32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\winsta.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\winsrv.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\winspool.drv:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\winscard.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\winrnr.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\winmm.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\winipsec.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\WgaLogon.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\webclnt.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\wdmaud.drv:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\w32time.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\vssapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\vga.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\version.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\uxtheme.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\userenv.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\user32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\url.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\upnp.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\uniplat.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\unimdmat.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\unimdm.tsp:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\umpnpmgr.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\umdmxfrm.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\TZLog.log:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\txflog.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\trkwks.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\termsrv.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\tapisrv.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\tapi32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\sxs.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\svchost.exe:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ssdpapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\srvsvc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\srsvc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\srrstr.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\srclient.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\smss.exe:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\shsvcs.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\shimeng.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\shgina.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\shfolder.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\sfc_os.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\sfc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\setupapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\serwvdrv.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\sensapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\sens.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\seclogon.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\schedsvc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\scesrv.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\scecli.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\samsrv.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\samlib.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\rtutils.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\rsaenh.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\riched32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\riched20.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\resutils.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\regsvc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\regapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\rdpwsx.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\rdpdd.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\rastapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\rasppp.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\rasmans.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\rasman.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\rasdlg.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\rasapi32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\rasadhlp.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\qmgr.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\pstorsvc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\psbase.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\psapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\profmap.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\powrprof.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\olethk32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\olesvr32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\olepro32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\olecnv32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\olecli32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\oleaut32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\oleaccrc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\oleacc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ole32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\odbcint.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\odbc32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ntmarta.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ntlsapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ntlanman.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ntdsapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\netui1.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\netui0.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\netshell.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\netrap.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\netman.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\netcfgx.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ndptsp.tsp:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\nddeapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ncobjapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\msxml3r.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\msvcp60.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\mstlsapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\msprivs.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\mspatcha.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\msimg32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\msidle.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\msi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\msgina.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\msacm32.drv:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\msacm32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\mprapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\mpr.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\modemui.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\midimap.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\mfcsubs.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\mfc42.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\lz32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\lsass.exe:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\logonui.exe:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\lmhsvc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\kmddsp.tsp:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ipnathlp.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\iphlpapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ipconf.tsp:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\imagehlp.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\icaapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\hnetcfg.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\hidphone.tsp:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\hid.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\h323.tsp:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\eventlog.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\esent.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ersvc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\duser.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\dssenh.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\drprov.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\dmserver.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\dllhost.exe:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\dhcpcsvc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\davclnt.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\csrss.exe:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\cscdll.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\cryptui.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\cryptsvc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\cryptnet.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\cryptdll.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\crypt32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\credui.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\comres.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\comdlg32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\comctl32.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\clusapi.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\clbcatq.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\certcli.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\cabinet.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\Browser.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\basesrv.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\authz.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\audiosrv.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ativvaxx.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\atikvmag.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ati3duag.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ati2dvag.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\ati2cqag.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\apphelp.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\alg.exe:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\advpack.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\adsldpc.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\System32\activeds.dll:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\setupapi.log.1.old:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\SchedLgU.Txt:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\MedCtrOC.log:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\bootstat.dat:KAVICHS
@Alternate Data Stream - 228 bytes -> C:\WINDOWS\$NtUninstallKB968389$\netlogon.dll:KAVICHS
@Alternate Data Stream - 196 bytes -> C:\WINDOWS\System32\mpqss.ini2:KAVICHS
@Alternate Data Stream - 132 bytes -> C:\WINDOWS\System32\drivers\udfs.sys:KAVICHS
@Alternate Data Stream - 1179 bytes -> C:\Program Files\Common Files\Microsoft Shared:hReGMSSpKuUeKCNtQ17LMBg
@Alternate Data Stream - 1099 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:Q2YEopCeLPgPl3Ew7A87NB
@Alternate Data Stream - 1087 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:Z3spXMBm09GoDSu9GOvNsmgzn
@Alternate Data Stream - 1078 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:4j0motGsZ5hDUuV2qR1g
@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\msvcrt.dll:KAVICHS
@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\mpqss.tmp:KAVICHS
@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\mpqss.bak2:KAVICHS
@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\mpqss.bak1:KAVICHS
@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\drivers\null.sys:KAVICHS
@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\drivers\fips.sys:KAVICHS
@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\drivers\cdaudio.sys:KAVICHS
@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\drivers\asctrm.sys:KAVICHS
@Alternate Data Stream - 100 bytes -> C:\WINDOWS\System32\drivers\acpiec.sys:KAVICHS
@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\ISAIAH\Favorites\Desktop.ini:KAVICHS

< End of report >

Hello.

Please run OTL.exe.

• Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):
  
  
  :OTL
  O4 - HKLM..\Run: [103] File not found
  O4 - HKLM..\Run: [avp] File not found
  O4 - HKLM..\Run: [mqjybnga] C:\Documents and Settings\ISAIAH\Local Settings\Application Data\adpcdsjsb\gxrfbwbshdw.exe ()
  O4 - HKLM..\Run: [Omatehefo] C:\WINDOWS\elodoxirakipe.dll ()
  O4 - HKCU..\Run: [Insider] File not found
  O4 - HKCU..\Run: [JDK5SWFMZY] File not found
  O4 - HKCU..\Run: [mqjybnga] C:\Documents and Settings\ISAIAH\Local Settings\Application Data\adpcdsjsb\gxrfbwbshdw.exe ()
  O4 - HKCU..\Run: [rihjsxan] C:\Documents and Settings\ISAIAH\Local Settings\Temp\xxemvakcr\grermimlajb.exe ()
  O4 - HKCU..\Run: [rwwz] File not found
  O4 - HKCU..\Run: [WinTouch] File not found
  O9 - Extra Button: Popup Blocker - {0D555BC6-E331-48b3-A60E-AAC0DF79438A} - Reg Error: Key error. File not found
  O9 - Extra 'Tools' menuitem : Popup Blocker - {0D555BC6-E331-48b3-A60E-AAC0DF79438A} - Reg Error: Key error. File not found
  O20 - AppInit_DLLs: (karina.dat\system32\) - File not found
  O20 - Winlogon\Notify\jkklmno: DllName - jkklmno.dll - File not found
  O20 - Winlogon\Notify\mljkhfd: DllName - mljkhfd.dll - File not found
  O20 - Winlogon\Notify\natva: DllName - C:\Documents and Settings\ISAIAH\Application Data\Propellerhead Software\natva.dll - File not found
  O20 - Winlogon\Notify\ssqpm: DllName - C:\WINDOWS\system32\ssqpm.dll - File not found
  O24 - Desktop Components:0 () - C:\Program Files\Common Files\rtelek.html
  O30 - LSA: Authentication Packages - (C:\WINDOWS\system32\vtutq.dll) - File not found
  O36 - AppCertDlls: doskhone - (C:\WINDOWS\system32\bootdosx.dll) - File not found
  [2011/02/13 15:49:50 | 000,000,286 | -H-- | M] () -- C:\WINDOWS\tasks\{8C3FDD81-7AE0-4605-A46A-2488B179F2A3}.job
  [2010/07/19 15:35:29 | 000,767,488 | ---- | C] () -- C:\WINDOWS\System32\drivers\soxjxmj.sys
  [2008/06/18 18:59:34 | 000,012,875 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\faho.reg
  [2008/06/17 18:05:19 | 000,015,883 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\falabum.lib
  [2008/06/13 00:06:19 | 000,018,774 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\ifuvag._sy
  [2008/06/13 00:06:19 | 000,018,543 | ---- | C] () -- C:\WINDOWS\ydemymudu.sys
  [2008/06/13 00:06:19 | 000,017,908 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\acihas.db
  [2008/06/13 00:06:19 | 000,016,908 | ---- | C] () -- C:\Program Files\Common Files\ycawumyv._sy
  [2008/06/13 00:06:19 | 000,016,537 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\ewyfig.dll
  [2008/06/13 00:06:19 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\olylopu.sys
  [2008/06/13 00:06:19 | 000,014,240 | ---- | C] () -- C:\Program Files\Common Files\yzyver.dl
  [2008/06/13 00:06:19 | 000,013,664 | ---- | C] () -- C:\Program Files\Common Files\ygyjefon.bat
  [2008/06/13 00:06:19 | 000,010,621 | ---- | C] () -- C:\Program Files\Common Files\rejupyvys.ban
  [2008/06/13 00:06:19 | 000,010,255 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\igifuxyve.inf
  [2008/06/13 00:06:19 | 000,010,012 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\yrig.db
  [2008/06/10 11:18:14 | 000,018,861 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\abacaqahu.pif
  [2008/06/10 11:18:14 | 000,016,345 | ---- | C] () -- C:\Program Files\Common Files\awudigyby.dll
  [2008/06/10 11:18:14 | 000,012,111 | ---- | C] () -- C:\Program Files\Common Files\edusysujez.inf
  [2008/06/10 11:18:14 | 000,011,457 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\uboxiled.scr
  [2008/06/10 11:18:13 | 000,018,698 | ---- | C] () -- C:\Program Files\Common Files\budedawyv.dat
  [2008/06/10 11:18:13 | 000,018,618 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\mugoqiv.dll
  [2008/06/10 11:18:13 | 000,018,008 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\ycapucehi.bin
  [2008/06/10 11:18:13 | 000,017,878 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\ratuda._sy
  [2008/06/10 11:18:13 | 000,014,898 | ---- | C] () -- C:\Program Files\Common Files\uvyvany.reg
  [2008/06/10 11:18:13 | 000,014,210 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\ujedoka.sys
  [2008/06/10 11:18:13 | 000,013,654 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\qurolesa.bat
  [2008/06/10 11:18:13 | 000,011,455 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\cuhah.pif
  [2008/06/08 13:56:03 | 000,010,401 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\poda.sys
  [2008/06/05 18:47:23 | 000,014,813 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\jawyt.inf
  [2008/06/02 18:59:32 | 000,019,846 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\tesisyh.db
  [2008/06/02 18:59:32 | 000,019,404 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\qanekufod.com
  [2008/06/02 18:59:32 | 000,019,221 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ehyxig.dll
  [2008/06/02 18:59:32 | 000,018,525 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ypipudy.lib
  [2008/06/02 18:59:32 | 000,018,228 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\ygumax.inf
  [2008/06/02 18:59:32 | 000,018,062 | ---- | C] () -- C:\Program Files\Common Files\aticure.vbs
  [2008/06/02 18:59:32 | 000,017,098 | ---- | C] () -- C:\Program Files\Common Files\ynyro.scr
  [2008/06/02 18:59:32 | 000,016,029 | ---- | C] () -- C:\Program Files\Common Files\widar.bat
  [2008/06/02 18:59:32 | 000,014,650 | ---- | C] () -- C:\Program Files\Common Files\qexykidu.sys
  [2008/06/02 18:59:32 | 000,013,852 | ---- | C] () -- C:\WINDOWS\ytatuh.sys
  [2008/06/02 18:59:32 | 000,013,094 | ---- | C] () -- C:\Program Files\Common Files\mutetidid.sys
  [2008/06/02 18:59:32 | 000,012,227 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Local Settings\Application Data\eqagilok.com
  [2008/06/02 18:59:32 | 000,012,151 | ---- | C] () -- C:\WINDOWS\anajubude.dll
  [2008/06/02 18:59:32 | 000,010,463 | ---- | C] () -- C:\Documents and Settings\ISAIAH\Application Data\aponaqyno._sy
  [2008/04/06 20:03:30 | 000,751,830 | -HS- | C] () -- C:\WINDOWS\System32\wrsgmnak.ini
  [2008/04/05 20:02:47 | 000,708,827 | -HS- | C] () -- C:\WINDOWS\System32\bibjyfgv.ini
  [2008/04/03 20:32:43 | 000,693,426 | -HS- | C] () -- C:\WINDOWS\System32\aktlordj.ini
  [2008/04/02 20:31:45 | 000,000,872 | -HS- | C] () -- C:\WINDOWS\System32\llyvdkeu.ini
  [2008/04/01 20:30:26 | 001,926,046 | -HS- | C] () -- C:\WINDOWS\System32\hjbvkiou.ini
  [2008/03/31 17:34:19 | 001,264,929 | -HS- | C] () -- C:\WINDOWS\System32\mjoleakv.ini
  [2008/03/30 09:40:39 | 001,189,162 | -HS- | C] () -- C:\WINDOWS\System32\erwrnott.ini
  [2008/03/28 20:26:41 | 001,244,553 | -HS- | C] () -- C:\WINDOWS\System32\gafwxjox.ini
  [2008/03/27 20:28:00 | 001,238,104 | -HS- | C] () -- C:\WINDOWS\System32\bhiayjvo.ini
  [2008/03/26 20:41:01 | 001,237,984 | -HS- | C] () -- C:\WINDOWS\System32\pbfdocae.ini
  [2008/03/25 19:59:08 | 001,419,428 | -HS- | C] () -- C:\WINDOWS\System32\xnsijdbw.ini
  [2008/03/25 19:43:21 | 001,473,920 | -HS- | C] () -- C:\WINDOWS\System32\hwbemffm.ini
  [2008/03/24 19:38:19 | 001,566,519 | -HS- | C] () -- C:\WINDOWS\System32\ywpmijcw.ini
  [2008/03/23 19:44:37 | 001,493,091 | -HS- | C] () -- C:\WINDOWS\System32\oewbetkc.ini
  [2008/03/23 17:14:37 | 001,605,203 | -HS- | C] () -- C:\WINDOWS\System32\xqqxsgtl.ini
  [2008/03/22 17:11:38 | 001,605,143 | -HS- | C] () -- C:\WINDOWS\System32\qwpditvp.ini
  [2008/03/21 17:09:48 | 001,605,083 | -HS- | C] () -- C:\WINDOWS\System32\jrwspefa.ini
  [2008/03/19 19:18:54 | 001,604,843 | -HS- | C] () -- C:\WINDOWS\System32\hxuaywho.ini
  [2008/03/19 19:12:46 | 000,358,990 | -HS- | C] () -- C:\WINDOWS\System32\qtutv.ini2
  [2008/03/19 19:12:45 | 000,358,990 | -HS- | C] () -- C:\WINDOWS\System32\qtutv.ini
  [2008/03/14 18:13:36 | 001,604,543 | -HS- | C] () -- C:\WINDOWS\System32\oabyvkil.ini
  [2008/03/13 16:44:02 | 000,950,349 | -HS- | C] () -- C:\WINDOWS\System32\omylvsue.ini
  [2008/03/12 19:24:03 | 000,833,340 | -HS- | C] () -- C:\WINDOWS\System32\xqavynef.ini
  [2008/03/11 18:35:10 | 000,852,472 | -HS- | C] () -- C:\WINDOWS\System32\yskmnema.ini
  [2008/03/10 18:22:20 | 000,881,799 | -HS- | C] () -- C:\WINDOWS\System32\rnbkucmc.ini
  [2008/03/09 08:36:54 | 000,938,203 | -HS- | C] () -- C:\WINDOWS\System32\qyylyieu.ini
  [2008/03/08 17:50:18 | 000,870,157 | -HS- | C] () -- C:\WINDOWS\System32\biapudhi.ini
  [2008/03/07 17:47:17 | 000,870,299 | -HS- | C] () -- C:\WINDOWS\System32\snktbkmi.ini
  [2008/03/06 20:21:38 | 000,874,946 | -HS- | C] () -- C:\WINDOWS\System32\gfwtjbac.ini
  [2008/03/05 18:07:24 | 000,904,635 | -HS- | C] () -- C:\WINDOWS\System32\dhbouiot.ini
  [2008/03/04 18:11:32 | 000,937,960 | -HS- | C] () -- C:\WINDOWS\System32\bfcxidcf.ini
  [2008/03/03 18:48:09 | 000,932,674 | -HS- | C] () -- C:\WINDOWS\System32\ngvqbyrf.ini
  [2008/03/01 14:04:39 | 001,035,882 | -HS- | C] () -- C:\WINDOWS\System32\otgmcvei.ini
  [2008/02/29 20:14:52 | 000,952,965 | -HS- | C] () -- C:\WINDOWS\System32\fqnfcyqb.ini
  [2008/02/29 18:36:05 | 001,054,031 | -HS- | C] () -- C:\WINDOWS\System32\qyavbewr.ini
  [2008/02/28 18:35:36 | 000,936,828 | -HS- | C] () -- C:\WINDOWS\System32\spannrky.ini
  [2008/02/27 18:07:13 | 000,948,660 | -HS- | C] () -- C:\WINDOWS\System32\lqncmiie.ini
  [2008/02/26 18:10:02 | 000,935,000 | -HS- | C] () -- C:\WINDOWS\System32\wdflynik.ini
  [2008/02/25 17:45:32 | 000,934,853 | -HS- | C] () -- C:\WINDOWS\System32\ihukixxc.ini
  [2008/02/24 17:17:24 | 001,007,463 | -HS- | C] () -- C:\WINDOWS\System32\hnxwqwwv.ini
  [2008/02/24 15:54:54 | 000,983,701 | -HS- | C] () -- C:\WINDOWS\System32\oswwjttn.ini
  [2008/02/24 02:24:55 | 000,983,581 | -HS- | C] () -- C:\WINDOWS\System32\qykqgyyu.ini
  [2008/02/23 16:38:07 | 000,983,461 | -HS- | C] () -- C:\WINDOWS\System32\vwwweloy.ini
  [2008/02/23 14:50:24 | 000,983,368 | -HS- | C] () -- C:\WINDOWS\System32\cdogoesv.ini
  [2008/02/22 18:50:24 | 000,983,775 | -HS- | C] () -- C:\WINDOWS\System32\sxpiedps.ini
  [2008/02/22 18:29:43 | 001,004,140 | -HS- | C] () -- C:\WINDOWS\System32\mhxqtyyc.ini
  [2008/02/20 20:23:29 | 001,069,720 | -HS- | C] () -- C:\WINDOWS\System32\tnhqrnri.ini
  [2008/02/20 17:53:33 | 001,014,040 | -HS- | C] () -- C:\WINDOWS\System32\dmtjmkbc.ini
  [2008/02/19 18:19:23 | 000,985,151 | -HS- | C] () -- C:\WINDOWS\System32\fdvyvocb.ini
  [2008/02/18 17:59:17 | 001,042,595 | -HS- | C] () -- C:\WINDOWS\System32\cepumbfi.ini
  [2008/02/17 10:49:24 | 001,035,193 | -HS- | C] () -- C:\WINDOWS\System32\bdwqogqj.ini
  [2008/02/17 02:15:26 | 001,045,167 | -HS- | C] () -- C:\WINDOWS\System32\nyophkwm.ini
  [2008/02/17 01:28:20 | 001,045,047 | -HS- | C] () -- C:\WINDOWS\System32\lkrovclj.ini
  [2008/02/17 00:48:23 | 001,044,927 | -HS- | C] () -- C:\WINDOWS\System32\ftpuaubq.ini
  [2008/02/16 18:54:58 | 001,044,801 | -HS- | C] () -- C:\WINDOWS\System32\cceeffgu.ini
  [2008/02/16 12:47:58 | 001,061,158 | -HS- | C] () -- C:\WINDOWS\System32\grujckfk.ini
  [2008/02/15 18:54:20 | 001,197,530 | -HS- | C] () -- C:\WINDOWS\System32\eyvudvaf.ini
  [2008/02/14 17:57:10 | 001,123,247 | -HS- | C] () -- C:\WINDOWS\System32\bfyxecon.ini
  [2008/02/13 18:46:33 | 001,116,793 | -HS- | C] () -- C:\WINDOWS\System32\rvphiftw.ini
  [2008/02/13 17:41:18 | 001,183,101 | -HS- | C] () -- C:\WINDOWS\System32\imbmurui.ini
  [2008/02/12 21:35:50 | 001,166,818 | -HS- | C] () -- C:\WINDOWS\System32\njhrqojm.ini
  [2008/02/12 17:53:41 | 001,222,050 | -HS- | C] () -- C:\WINDOWS\System32\uuwjbfmm.ini
  [2008/02/11 20:30:31 | 001,211,101 | -HS- | C] () -- C:\WINDOWS\System32\mnchrxtg.ini
  [2008/02/11 18:00:47 | 001,221,257 | -HS- | C] () -- C:\WINDOWS\System32\eybmxdit.ini
  [2008/02/10 14:20:00 | 001,218,806 | -HS- | C] () -- C:\WINDOWS\System32\gwnaxtqc.ini
  [2008/02/10 13:50:20 | 001,218,650 | -HS- | C] () -- C:\WINDOWS\System32\jelirnkq.ini
  [2008/02/10 13:02:32 | 001,218,530 | -HS- | C] () -- C:\WINDOWS\System32\brbkvaiw.ini
  [2008/02/09 17:57:26 | 001,218,410 | -HS- | C] () -- C:\WINDOWS\System32\bqmpytoo.ini
  [2008/02/09 03:32:52 | 001,218,389 | -HS- | C] () -- C:\WINDOWS\System32\fewwckjm.ini
  [2008/02/08 17:54:25 | 001,221,986 | -HS- | C] () -- C:\WINDOWS\System32\rgxwjmky.ini
  [2008/02/07 17:42:48 | 001,219,888 | -HS- | C] () -- C:\WINDOWS\System32\mapijvov.ini
  [2008/02/06 20:57:49 | 001,200,161 | -HS- | C] () -- C:\WINDOWS\System32\xcggsfpt.ini
  [2008/02/06 18:00:55 | 001,199,738 | -HS- | C] () -- C:\WINDOWS\System32\wyrtajwi.ini
  [2008/02/05 22:08:55 | 001,133,610 | -HS- | C] () -- C:\WINDOWS\System32\jmkdqlnd.ini
  [2008/02/05 21:20:43 | 001,133,568 | -HS- | C] () -- C:\WINDOWS\System32\csjukwgg.ini
  [2008/02/05 19:43:58 | 001,135,893 | -HS- | C] () -- C:\WINDOWS\System32\qrpbxaok.ini
  [2008/02/04 20:24:56 | 001,130,160 | -HS- | C] () -- C:\WINDOWS\System32\tvjjtjtm.ini
  [2008/02/04 16:53:24 | 001,131,600 | -HS- | C] () -- C:\WINDOWS\System32\indqnlde.ini
  [2008/02/04 08:39:01 | 001,131,825 | -HS- | C] () -- C:\WINDOWS\System32\ggmmoxpx.ini
  [2008/02/04 07:02:18 | 001,131,615 | -HS- | C] () -- C:\WINDOWS\System32\iqesrqwp.ini
  [2008/02/03 14:06:28 | 001,127,425 | -HS- | C] () -- C:\WINDOWS\System32\ieewitlt.ini
  [2008/02/03 11:32:12 | 001,127,305 | -HS- | C] () -- C:\WINDOWS\System32\gqwyhnjk.ini
  [2008/02/03 01:27:55 | 001,127,176 | -HS- | C] () -- C:\WINDOWS\System32\shyceeqv.ini
  [2008/02/03 00:57:24 | 001,127,056 | -HS- | C] () -- C:\WINDOWS\System32\wseorjwy.ini
  [2008/02/02 16:07:03 | 001,126,999 | -HS- | C] () -- C:\WINDOWS\System32\nvqckvib.ini
  [2008/02/01 20:04:56 | 001,162,308 | -HS- | C] () -- C:\WINDOWS\System32\kfmxisia.ini
  [2008/01/31 21:18:18 | 001,155,979 | -HS- | C] () -- C:\WINDOWS\System32\uetnwnaa.ini
  [2008/01/31 20:30:24 | 001,155,841 | -HS- | C] () -- C:\WINDOWS\System32\pdyqrqhx.ini
  [2008/01/31 17:39:24 | 001,168,115 | -HS- | C] () -- C:\WINDOWS\System32\kmhwybwm.ini
  [2008/01/30 19:00:42 | 001,180,733 | -HS- | C] () -- C:\WINDOWS\System32\bpyexjiw.ini
  [2008/01/29 20:50:45 | 001,167,221 | -HS- | C] () -- C:\WINDOWS\System32\tanhgrgf.ini
  [2008/01/28 22:25:33 | 001,162,207 | -HS- | C] () -- C:\WINDOWS\System32\bhqmxblq.ini
  [2008/01/28 21:37:22 | 001,162,339 | -HS- | C] () -- C:\WINDOWS\System32\xsblinxm.ini
  [2008/01/28 20:55:25 | 001,162,225 | -HS- | C] () -- C:\WINDOWS\System32\klsfjpeo.ini
  [2008/01/27 19:46:23 | 001,143,880 | -HS- | C] () -- C:\WINDOWS\System32\upawovfe.ini
  [2008/01/27 18:48:52 | 001,143,594 | -HS- | C] () -- C:\WINDOWS\System32\fqbhpvnk.ini
  [2008/01/27 15:09:09 | 001,143,472 | -HS- | C] () -- C:\WINDOWS\System32\xkdsehcg.ini
  [2008/01/26 16:50:16 | 001,143,200 | -HS- | C] () -- C:\WINDOWS\System32\nlpcnabj.ini
  [2008/01/26 12:03:06 | 001,142,692 | -HS- | C] () -- C:\WINDOWS\System32\mgpippsg.ini
  [2008/01/25 17:33:56 | 000,976,342 | -HS- | C] () -- C:\WINDOWS\System32\pdglbkip.ini
  [2008/01/24 19:26:50 | 000,994,174 | -HS- | C] () -- C:\WINDOWS\System32\bctutbjx.ini
  [2008/01/23 18:13:23 | 001,022,387 | -HS- | C] () -- C:\WINDOWS\System32\nwgpxfto.ini
  [2008/01/22 18:22:20 | 000,983,792 | -HS- | C] () -- C:\WINDOWS\System32\cefrseuk.ini
  [2008/01/21 19:10:00 | 000,957,628 | -HS- | C] () -- C:\WINDOWS\System32\hsgfhxhc.ini
  [2008/01/21 17:53:56 | 000,968,098 | -HS- | C] () -- C:\WINDOWS\System32\ffyvykek.ini
  [2008/01/20 12:14:46 | 000,950,455 | -HS- | C] () -- C:\WINDOWS\System32\tlrepmbj.ini
  [2008/01/19 12:58:10 | 000,952,502 | -HS- | C] () -- C:\WINDOWS\System32\bljqvnnj.ini
  [2008/01/18 17:36:18 | 001,002,748 | -HS- | C] () -- C:\WINDOWS\System32\dwyafkbc.ini
  [2008/01/17 18:17:41 | 001,070,167 | -HS- | C] () -- C:\WINDOWS\System32\plktyyww.ini
  [2008/01/16 17:45:09 | 001,059,861 | -HS- | C] () -- C:\WINDOWS\System32\ovduukbq.ini
  [2008/01/15 17:56:14 | 001,055,118 | -HS- | C] () -- C:\WINDOWS\System32\lrikucqt.ini
  [2008/01/14 18:09:10 | 001,050,556 | -HS- | C] () -- C:\WINDOWS\System32\kcnxbkel.ini
  [2008/01/13 15:01:22 | 001,053,893 | -HS- | C] () -- C:\WINDOWS\System32\trwhomhy.ini
  [2008/01/13 12:18:26 | 001,053,809 | -HS- | C] () -- C:\WINDOWS\System32\kfinfudv.ini
  [2008/01/12 13:13:33 | 001,053,675 | -HS- | C] () -- C:\WINDOWS\System32\hsllfxmj.ini
  [2008/01/11 18:06:20 | 001,056,755 | -HS- | C] () -- C:\WINDOWS\System32\gunysesa.ini
  [2008/01/10 17:55:54 | 001,061,177 | -HS- | C] () -- C:\WINDOWS\System32\wlflifnk.ini
  [2008/01/09 18:08:08 | 001,046,237 | -HS- | C] () -- C:\WINDOWS\System32\rbtfpfuy.ini
  [2008/01/09 17:54:30 | 001,046,030 | -HS- | C] () -- C:\WINDOWS\System32\mmfyfgfj.ini
  [2008/01/08 17:49:48 | 001,050,877 | -HS- | C] () -- C:\WINDOWS\System32\fdtnaapw.ini
  [2008/01/07 23:31:48 | 001,045,452 | -HS- | C] () -- C:\WINDOWS\System32\uefwpisr.ini
  [2008/01/07 22:04:25 | 001,045,328 | -HS- | C] () -- C:\WINDOWS\System32\bijldhur.ini
  [2008/01/07 00:43:52 | 001,045,451 | -HS- | C] () -- C:\WINDOWS\System32\noeabhpo.ini
  [2008/01/06 17:51:25 | 001,045,358 | -HS- | C] () -- C:\WINDOWS\System32\kovtefdv.ini
  [2008/01/06 13:08:26 | 001,045,189 | -HS- | C] () -- C:\WINDOWS\System32\qbiueiwy.ini
  [2008/01/05 12:35:29 | 001,045,060 | -HS- | C] () -- C:\WINDOWS\System32\xeddffeb.ini
  [2008/01/05 00:49:32 | 001,044,967 | -HS- | C] () -- C:\WINDOWS\System32\heobpqib.ini
  [2008/01/04 17:51:18 | 001,044,820 | -HS- | C] () -- C:\WINDOWS\System32\dedasqjx.ini
  [2008/01/03 17:42:52 | 001,044,700 | -HS- | C] () -- C:\WINDOWS\System32\nqvrggpl.ini
  [2008/01/02 19:52:12 | 001,032,241 | -HS- | C] () -- C:\WINDOWS\System32\htlmhlly.ini
  [2008/01/02 18:11:43 | 001,032,067 | -HS- | C] () -- C:\WINDOWS\System32\wdfrwtfh.ini
  [2008/01/01 19:20:51 | 001,031,706 | -HS- | C] () -- C:\WINDOWS\System32\cixssgfp.ini
  [2007/12/31 22:35:49 | 001,031,559 | -HS- | C] () -- C:\WINDOWS\System32\seqkkviv.ini
  [2007/12/31 14:22:53 | 001,031,439 | -HS- | C] () -- C:\WINDOWS\System32\qqhvmpee.ini
  [2007/12/30 14:48:47 | 001,031,401 | -HS- | C] () -- C:\WINDOWS\System32\sbcqvmlu.ini
  [2007/12/30 11:11:28 | 001,031,235 | -HS- | C] () -- C:\WINDOWS\System32\vaoascpm.ini
  [2007/12/24 11:13:28 | 001,311,078 | -HS- | C] () -- C:\WINDOWS\System32\jeyaqwqo.ini
  [2007/12/22 08:39:55 | 001,313,151 | -HS- | C] () -- C:\WINDOWS\System32\naowmnga.ini
  [2007/12/21 18:25:57 | 001,376,077 | -HS- | C] () -- C:\WINDOWS\System32\eyiddlhl.ini
  [2007/12/21 18:07:10 | 001,420,193 | -HS- | C] () -- C:\WINDOWS\System32\lnogyalm.ini
  [2007/12/20 18:08:10 | 001,405,880 | -HS- | C] () -- C:\WINDOWS\System32\bwhmbsil.ini
  [2007/12/19 21:08:00 | 001,399,909 | -HS- | C] () -- C:\WINDOWS\System32\dttcfpje.ini
  [2007/12/18 21:16:26 | 001,366,693 | -HS- | C] () -- C:\WINDOWS\System32\rhfvhuxl.ini
  [2007/12/17 04:59:15 | 001,337,259 | -HS- | C] () -- C:\WINDOWS\System32\bqycbnom.ini
  [2007/12/16 10:44:24 | 001,338,199 | -HS- | C] () -- C:\WINDOWS\System32\vrxteeor.ini
  [2007/12/14 22:59:26 | 001,341,998 | -HS- | C] () -- C:\WINDOWS\System32\csrdpwii.ini
  [2007/12/13 18:10:50 | 001,328,986 | -HS- | C] () -- C:\WINDOWS\System32\njkfmbbx.ini
  [2007/12/12 22:59:50 | 000,000,263 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
  [2007/12/12 21:01:29 | 001,283,621 | -HS- | C] () -- C:\WINDOWS\System32\lysqbuso.ini
  [2007/12/12 18:17:56 | 001,293,381 | -HS- | C] () -- C:\WINDOWS\System32\tjjmamum.ini
  [2007/12/10 22:19:27 | 001,345,120 | -HS- | C] () -- C:\WINDOWS\System32\wurjvehj.ini
  [2007/12/10 21:39:50 | 001,200,796 | -HS- | C] () -- C:\WINDOWS\System32\ppoudlia.ini
  [2007/12/07 18:09:23 | 001,252,634 | -HS- | C] () -- C:\WINDOWS\System32\qquyhxxe.ini
  [2007/12/06 15:22:48 | 001,183,941 | -HS- | C] () -- C:\WINDOWS\System32\fvobyjus.ini
  [2007/12/05 17:40:50 | 001,153,175 | -HS- | C] () -- C:\WINDOWS\System32\lnycpjuh.ini
  [2007/12/04 22:59:06 | 001,112,234 | -HS- | C] () -- C:\WINDOWS\System32\knekwedl.ini
  [2007/12/04 19:45:52 | 000,999,358 | -HS- | C] () -- C:\WINDOWS\System32\sngwodtn.ini
  [2007/12/03 21:28:03 | 000,999,298 | -HS- | C] () -- C:\WINDOWS\System32\atodqijj.ini
  [2007/12/03 18:45:43 | 001,000,642 | -HS- | C] () -- C:\WINDOWS\System32\evikmetg.ini
  [2007/12/02 03:34:08 | 001,002,998 | -HS- | C] () -- C:\WINDOWS\System32\dthamllm.ini
  [2007/11/29 17:59:50 | 000,922,347 | -HS- | C] () -- C:\WINDOWS\System32\whnsdnpk.ini
  [2007/11/24 11:08:34 | 001,092,095 | -HS- | C] () -- C:\WINDOWS\System32\dlvmrhmo.ini
  [2007/11/22 17:19:59 | 000,793,074 | -HS- | C] () -- C:\WINDOWS\System32\dtjuodqi.ini
  [2007/11/21 20:38:52 | 000,789,481 | -HS- | C] () -- C:\WINDOWS\System32\sspijtjd.ini
  [2007/11/21 19:38:51 | 000,843,027 | -HS- | C] () -- C:\WINDOWS\System32\rcoopbnd.ini
  [2007/11/20 20:34:41 | 000,689,502 | -HS- | C] () -- C:\WINDOWS\System32\wtpwaghf.ini
  [2007/11/18 12:52:57 | 000,678,085 | -HS- | C] () -- C:\WINDOWS\System32\fuyxqmkr.ini
  [2007/11/17 12:50:06 | 000,677,920 | -HS- | C] () -- C:\WINDOWS\System32\egcrpvho.ini
  [2007/11/17 09:19:13 | 001,239,529 | -HS- | C] () -- C:\WINDOWS\System32\kjswqhjx.ini
  [2007/11/15 17:54:13 | 001,239,529 | -HS- | C] () -- C:\WINDOWS\System32\frtctivj.ini
  [2007/11/12 17:47:19 | 001,306,718 | -HS- | C] () -- C:\WINDOWS\System32\vtfeswjc.ini
  [2007/11/11 21:45:11 | 001,216,392 | -HS- | C] () -- C:\WINDOWS\System32\wmiwmeva.ini
  [2007/11/10 21:42:11 | 001,216,263 | -HS- | C] () -- C:\WINDOWS\System32\qqfsrtaj.ini
  [2007/11/09 21:42:13 | 001,218,528 | -HS- | C] () -- C:\WINDOWS\System32\wgyobblk.ini
  [2007/11/08 18:55:59 | 001,210,366 | -HS- | C] () -- C:\WINDOWS\System32\nhxfkdix.ini
  [2007/11/06 19:21:14 | 001,212,057 | -HS- | C] () -- C:\WINDOWS\System32\uhkepgjn.ini
  [2007/10/29 16:58:18 | 001,199,834 | -HS- | C] () -- C:\WINDOWS\System32\bvdctdpp.ini
  [2007/10/25 20:49:14 | 001,199,660 | -HS- | C] () -- C:\WINDOWS\System32\unwycxep.ini
  [2007/10/25 18:02:12 | 000,693,481 | -HS- | C] () -- C:\WINDOWS\System32\taowgixo.ini
  [2007/10/22 17:18:05 | 000,693,730 | -HS- | C] () -- C:\WINDOWS\System32\ofoovnmx.ini
  [2007/10/22 17:00:33 | 000,693,610 | -HS- | C] () -- C:\WINDOWS\System32\cwifjwkd.ini
  [2007/10/22 16:54:41 | 000,000,246 | ---- | C] () -- C:\Program Files\Common Files\qucav655
  [2007/10/21 20:36:52 | 000,693,490 | -HS- | C] () -- C:\WINDOWS\System32\uaefkwyb.ini
  [2007/10/21 20:22:31 | 000,006,520 | -HS- | C] () -- C:\WINDOWS\System32\mpqss.ini
  [2007/10/20 14:42:45 | 000,230,137 | -HS- | C] () -- C:\WINDOWS\System32\mpqss.ini2
  [2006/12/05 17:00:00 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ernel32.dll
  
  :commands
  [emptytemp]
  [resethosts]
  [purity]
  [reboot]
  
  
  
• Return to OTL, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.
  
  
• Click the red Run Fix button.
  
• A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  
• Close OTL.exe
  

If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

Wow now I can't even start the comp up to do this.. It says STOP: c000021a [Fatal System Error] The windows logon process system process terminated unexpectedly with a status of 0xc0000034 (0x00000000 0x00000000) The system has been shut down.

Any suggestions on fixing this would be good ><

We are going to be using a Windows Recovery Environment to help disinfect the system so it may boot again.

Download the OTLPE Standard REATOGO Windows Recovery Environment.

• Place a blank CD-R disc in to your CD burning drive.
  
• Download OTLPEStd.exe and double-click on it to burn to a CD using ISO Burner.
  
• Reboot your system using the boot CD you just created.
  
  Note : If you do not know how to set your computer to boot from CD follow the steps here
  
• Your system should now display a REATOGO-X-PE desktop.
  
• Double-click on the OTLPE icon.
  
• When asked "Do you wish to load the remote registry", select Yes
  
• When asked "Do you wish to load remote user profile(s) for scanning", select Yes
  
• Ensure the box "Automatically Load All Remaining Users" is checked and press OK
  
• OTL should now start. Change the following settings
  

• Change Drivers to Non-Microsoft
  
• Press Run Scan to start the scan.
  
• When finished, the file will be saved in drive C:\_OTL\MovedFiles
  
• Copy this file to your USB drive if you do not have internet connection on this system
  
• Please post the contents of the OTL.txt file in your reply.
  

How do i dl anything when the comp doesnt get past the boot stage..?

Use another machine.